aws-cdk-lib 2.75.1__py3-none-any.whl → 2.76.0__py3-none-any.whl

aws_cdk/aws_ec2/__init__.py

@@ -15,7 +15,6 @@ network partitioning. This is achieved by creating an instance of
 `Vpc`:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "VPC")
 ```
 
@@ -116,7 +115,6 @@ The example below will place the endpoint into two AZs (`us-east-1a` and `us-eas
 in Isolated subnets:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -133,7 +131,6 @@ ec2.InterfaceVpcEndpoint(self, "VPC Endpoint",
 You can also specify specific subnet objects for granular control:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # subnet1: ec2.Subnet
 # subnet2: ec2.Subnet
@@ -213,7 +210,6 @@ gets routed, pass a custom value for `defaultAllowedTraffic` and access the
 the VPC:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # instance_type: ec2.InstanceType
 
 
@@ -243,12 +239,11 @@ Be aware that if you don't explicitly reserve subnet groups in `subnetConfigurat
 Use `IpAddresses.cidr` to define a Cidr range for your Vpc directly in code:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 from aws_cdk.aws_ec2 import IpAddresses
 
 
-ec2.Vpc(stack, "TheVPC",
-    ip_addresses=ec2.IpAddresses.cidr("10.0.1.0/20")
+ec2.Vpc(self, "TheVPC",
+    ip_addresses=IpAddresses.cidr("10.0.1.0/20")
 )
 ```
 
@@ -264,14 +259,13 @@ The argument to `IpAddresses.cidr` may not be a token, and concrete Cidr values
 Amazon VPC IP Address Manager (IPAM) manages a large IP space, from which chunks can be allocated for use in the Vpc. For information on Amazon VPC IP Address Manager please see the [official documentation](https://docs.aws.amazon.com/vpc/latest/ipam/what-it-is-ipam.html). An example of allocating from AWS IPAM looks like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 from aws_cdk.aws_ec2 import IpAddresses
 
 # pool: ec2.CfnIPAMPool
 
 
-ec2.Vpc(stack, "TheVPC",
-    ip_addresses=ec2.IpAddresses.aws_ipam_allocation(
+ec2.Vpc(self, "TheVPC",
+    ip_addresses=IpAddresses.aws_ipam_allocation(
         ipv4_ipam_pool_id=pool.ref,
         ipv4_netmask_length=18,
         default_subnet_ipv4_netmask_length=24
@@ -297,7 +291,6 @@ space for reserving `n` availability zones can be done by setting the
 `reservedAzs` to `n` in vpc props, as shown below:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "TheVPC",
     cidr="10.0.0.0/21",
     max_azs=3,
@@ -322,11 +315,10 @@ to configure the number and size of all subnets. Specifying an advanced
 subnet configuration could look like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "TheVPC",
     # 'IpAddresses' configures the IP range and size of the entire VPC.
     # The IP space will be divided based on configuration for the subnets.
-    ip_addresses=IpAddresses.cidr("10.0.0.0/21"),
+    ip_addresses=ec2.IpAddresses.cidr("10.0.0.0/21"),
 
     # 'maxAzs' configures the maximum number of availability zones to use.
     # If you want to specify the exact availability zones you want the VPC
@@ -394,7 +386,6 @@ DatabaseSubnet3   |`ISOLATED`|`10.0.6.32/28`|#3|Only routes within the VPC
 If you need access to the internet gateway, you can get its ID like so:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -419,7 +410,6 @@ Internet Gateway created for the public subnet - perhaps for routing a VPN
 connection - you can do so like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "VPC",
     subnet_configuration=[ec2.SubnetConfiguration(
         subnet_type=ec2.SubnetType.PUBLIC,
@@ -450,7 +440,6 @@ by setting the `reserved` subnetConfiguration property to true, as shown
 below:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "TheVPC",
     nat_gateways=1,
     subnet_configuration=[ec2.SubnetConfiguration(
@@ -558,7 +547,6 @@ following limitations:
 Using `Vpc.fromVpcAttributes()` looks like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc.from_vpc_attributes(self, "VPC",
     vpc_id="vpc-1234",
     availability_zones=["us-east-1a", "us-east-1b"],
@@ -582,7 +570,6 @@ lists to be zipped together to form `ISubnet` instances.
 Public subnet group example (for private or isolated subnet groups, use the properties with the respective prefix):
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc.from_vpc_attributes(self, "VPC",
     vpc_id="vpc-1234",
     availability_zones=["us-east-1a", "us-east-1b", "us-east-1c"],
@@ -632,7 +619,6 @@ and an **Ingress** rule to the other. The connections object will automatically
 take care of this for you:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # load_balancer: elbv2.ApplicationLoadBalancer
 # app_fleet: autoscaling.AutoScalingGroup
 # db_fleet: autoscaling.AutoScalingGroup
@@ -653,7 +639,6 @@ app_fleet.connections.allow_to(db_fleet, ec2.Port.tcp(443), "App can call databa
 There are various classes that implement the connection peer part:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # app_fleet: autoscaling.AutoScalingGroup
 # db_fleet: autoscaling.AutoScalingGroup
 
@@ -670,7 +655,6 @@ app_fleet.connections.allow_to(peer, ec2.Port.tcp(443), "Allow outbound HTTPS")
 Any object that has a security group can itself be used as a connection peer:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # fleet1: autoscaling.AutoScalingGroup
 # fleet2: autoscaling.AutoScalingGroup
 # app_fleet: autoscaling.AutoScalingGroup
@@ -688,7 +672,6 @@ The connections that are allowed are specified by port ranges. A number of class
 the connection specifier:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 ec2.Port.tcp(80)
 ec2.Port.tcp_range(60000, 65535)
 ec2.Port.all_tcp()
@@ -714,7 +697,6 @@ If the object you're calling the peering method on has a default port associated
 For example:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # listener: elbv2.ApplicationListener
 # app_fleet: autoscaling.AutoScalingGroup
 # rds_database: rds.DatabaseCluster
@@ -753,7 +735,6 @@ my_security_group_without_inline_rules.add_ingress_rule(ec2.Peer.any_ipv4(), ec2
 If you know the ID and the configuration of the security group to import, you can use `SecurityGroup.fromSecurityGroupId`:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 sg = ec2.SecurityGroup.from_security_group_id(self, "SecurityGroupImport", "sg-1234",
     allow_all_outbound=True
 )
@@ -768,7 +749,6 @@ sg = ec2.SecurityGroup.from_lookup_by_name(self, "SecurityGroupLookup", "securit
 If the security group ID is known and configuration details are unknown, use method `SecurityGroup.fromLookupById` instead. This method will lookup property `allowAllOutbound` from the current configuration of the security group.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 sg = ec2.SecurityGroup.from_lookup_by_id(self, "SecurityGroupLookup", "sg-1234")
 ```
 
@@ -907,7 +887,6 @@ generic_windows = ec2.MachineImage.generic_windows({
 Create your VPC with VPN connections by specifying the `vpnConnections` props (keys are construct `id`s):
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "MyVpc",
     vpn_connections={
         "dynamic": ec2.VpnConnectionOptions( # Dynamic routing (BGP)
@@ -923,7 +902,6 @@ vpc = ec2.Vpc(self, "MyVpc",
 To create a VPC that can accept VPN connections, set `vpnGateway` to `true`:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "MyVpc",
     vpn_gateway=True
 )
@@ -992,7 +970,6 @@ By default, CDK will place a VPC endpoint in one subnet per AZ. If you wish to o
 use the `subnets` parameter as follows:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1013,7 +990,6 @@ AZs an endpoint service is available in, and will ensure the VPC endpoint is not
 These AZs will be stored in cdk.context.json.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1031,7 +1007,6 @@ create VPC endpoints without having to configure name, ports, etc. For example,
 use in your VPC:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1049,7 +1024,6 @@ automatically allowed from the VPC CIDR.
 Use the `connections` object to allow traffic to flow to the endpoint:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # my_endpoint: ec2.InterfaceVpcEndpoint
 
 
@@ -1063,7 +1037,6 @@ Alternatively, existing security groups can be used by specifying the `securityG
 A VPC endpoint service enables you to expose a Network Load Balancer(s) as a provider service to consumers, who connect to your service over a VPC endpoint. You can restrict access to your service via allowed principals (anything that extends ArnPrincipal), and require that new connections be manually accepted.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # network_load_balancer1: elbv2.NetworkLoadBalancer
 # network_load_balancer2: elbv2.NetworkLoadBalancer
 
@@ -1079,7 +1052,6 @@ Endpoint services support private DNS, which makes it easier for clients to conn
 You can enable private DNS on an endpoint service like so:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 from aws_cdk.aws_route53 import HostedZone, VpcEndpointServiceDomainName
 # zone: HostedZone
 # vpces: ec2.VpcEndpointService
@@ -1173,29 +1145,19 @@ care of restarting your instance if it ever fails.
 # instance_type: ec2.InstanceType
 
 
-# Amazon Linux 1
-ec2.Instance(self, "Instance1",
-    vpc=vpc,
-    instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux()
-)
-
 # Amazon Linux 2
 ec2.Instance(self, "Instance2",
     vpc=vpc,
     instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-    )
+    machine_image=ec2.MachineImage.latest_amazon_linux2()
 )
 
 # Amazon Linux 2 with kernel 5.x
 ec2.Instance(self, "Instance3",
     vpc=vpc,
     instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2,
-        kernel=ec2.AmazonLinuxKernel.KERNEL5_X
+    machine_image=ec2.AmazonLinux2Image(
+        kernel=ec2.AmazonLinux2Kernel.KERNEL_5_10
     )
 )
 
@@ -1203,22 +1165,122 @@ ec2.Instance(self, "Instance3",
 ec2.Instance(self, "Instance4",
     vpc=vpc,
     instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2022
-    )
+    machine_image=ec2.MachineImage.latest_amazon_linux2022()
 )
 
 # Graviton 3 Processor
 ec2.Instance(self, "Instance5",
     vpc=vpc,
     instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2,
+    machine_image=ec2.MachineImage.latest_amazon_linux2022(
         cpu_type=ec2.AmazonLinuxCpuType.ARM_64
     )
 )
 ```
 
+### Latest Amazon Linux Images
+
+Rather than specifying a specific AMI ID to use, it is possible to specify a SSM
+Parameter that contains the AMI ID. AWS publishes a set of [public parameters](https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-public-parameters-ami.html)
+that contain the latest Amazon Linux AMIs. To make it easier to query a
+particular image parameter, the CDK provides a couple of constructs `AmazonLinux2ImageSsmParameter`,
+`AmazonLinux2022ImageSsmParameter`, & `AmazonLinux2023SsmParameter`. For example
+to use the latest `al2023` image:
+
+```python
+# Example automatically generated from non-compiling source. May contain errors.
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    machine_image=ec2.MachineImage.latest_amazon_linux2023()
+)
+```
+
+> **Warning**
+> Since this retrieves the value from an SSM parameter at deployment time, the
+> value will be resolved each time the stack is deployed. This means that if
+> the parameter contains a different value on your next deployment, the instance
+> will be replaced.
+
+It is also possible to perform the lookup once at synthesis time and then cache
+the value in CDK context. This way the value will not change on future
+deployments unless you manually refresh the context.
+
+```python
+# Example automatically generated from non-compiling source. May contain errors.
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    machine_image=ec2.MachineImage.latest_amazon_linux2023(
+        cached_in_context=True
+    )
+)
+
+# or
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    # context cache is turned on by default
+    machine_image=ec2.AmazonLinux2023ImageSsmParameter()
+)
+```
+
+#### Kernel Versions
+
+Each Amazon Linux AMI uses a specific kernel version. Most Amazon Linux
+generations come with an AMI using the "default" kernel and then 1 or more
+AMIs using a specific kernel version, which may or may not be different from the
+default kernel version.
+
+For example, Amazon Linux 2 has two different AMIs available from the SSM
+parameters.
+
+* `/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-ebs`
+
+  * This is the "default" kernel which uses `kernel-4.14`
+* `/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.10-hvm-x86_64-ebs`
+
+If a new Amazon Linux generation AMI is published with a new kernel version,
+then a new SSM parameter will be created with the new version
+(e.g. `/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.15-hvm-x86_64-ebs`),
+but the "default" AMI may or may not be updated.
+
+If you would like to make sure you always have the latest kernel version, then
+either specify the specific latest kernel version or opt-in to using the CDK
+latest kernel version.
+
+```python
+# Example automatically generated from non-compiling source. May contain errors.
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    # context cache is turned on by default
+    machine_image=ec2.AmazonLinux2023ImageSsmParameter(
+        kernel=ec2.AmazonLinux2023Kernel.KERNEL_6_1
+    )
+)
+```
+
+*CDK managed latest*
+
+```python
+# Example automatically generated from non-compiling source. May contain errors.
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    # context cache is turned on by default
+    machine_image=ec2.AmazonLinux2023ImageSsmParameter(
+        kernel=ec2.AmazonLinux2023Kernel.CDK_LATEST
+    )
+)
+
+# or
+
+ec2.Instance(self, "LatestAl2023",
+    instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+    machine_image=ec2.MachineImage.latest_amazon_linux2023()
+)
+```
+
+When using the CDK managed latest version, when a new kernel version is made
+available the `LATEST` will be updated to point to the new kernel version. You
+then would be required to update the newest CDK version for it to take effect.
+
 ### Configuring Instances using CloudFormation Init (cfn-init)
 
 CloudFormation Init allows you to configure your instances by writing files to them, installing software
@@ -1231,7 +1293,6 @@ For the full set of capabilities of this system, see the documentation for
 Here is an example of applying some configuration to an instance:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 # machine_image: ec2.IMachineImage
@@ -1302,7 +1363,6 @@ start it immediately. The following examples shows how to start a trivial Python
 3 web server:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 
@@ -1310,12 +1370,9 @@ start it immediately. The following examples shows how to start a trivial Python
 ec2.Instance(self, "Instance",
     vpc=vpc,
     instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        # Amazon Linux 2 uses SystemD
-        generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-    ),
+    machine_image=ec2.MachineImage.latest_amazon_linux2022(),
 
-    init=ec2.CloudFormationInit.from_elements([
+    init=ec2.CloudFormationInit.from_elements(
         # Create a simple config file that runs a Python web server
         ec2.InitService.systemd_config_file("simpleserver",
             command="/usr/bin/python3 -m http.server 8080",
@@ -1326,8 +1383,7 @@ ec2.Instance(self, "Instance",
             service_manager=ec2.ServiceManager.SYSTEMD
         ),
         # Drop an example file to show the web server working
-        ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-    ])
+        ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
 )
 ```
 
@@ -1338,7 +1394,6 @@ config writes a config file for nginx, extracts an archive to the root directory
 restarts nginx so that it picks up the new config and files:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # my_bucket: s3.Bucket
 
 
@@ -1398,7 +1453,6 @@ root device (`/dev/sda1`) size to 50 GiB, and adds another EBS-backed device map
 size:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 # machine_image: ec2.IMachineImage
@@ -1425,7 +1479,6 @@ ec2.Instance(self, "Instance",
 It is also possible to encrypt the block devices. In this example we will create an customer managed key encrypted EBS-backed root device:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 from aws_cdk.aws_kms import Key
 
 # vpc: ec2.Vpc
@@ -1462,7 +1515,6 @@ A notable restriction is that a Volume can only be attached to instances in the
 The following demonstrates how to create a 500 GiB encrypted Volume in the `us-west-2a` availability zone, and give a role the ability to attach that Volume to a specific instance:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # instance: ec2.Instance
 # role: iam.Role
 
@@ -1482,7 +1534,6 @@ If you need to grant an instance the ability to attach/detach an EBS volume to/f
 will lead to an unresolvable circular reference between the instance role and the instance. In this case, use `grantAttachVolumeByResourceTag` and `grantDetachVolumeByResourceTag` as follows:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # instance: ec2.Instance
 # volume: ec2.Volume
 
@@ -1501,7 +1552,6 @@ to attach and detach your Volumes to/from instances, and how to format them for
 The following is a sample skeleton of EC2 UserData that can be used to attach a Volume to the Linux instance that it is running on:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # instance: ec2.Instance
 # volume: ec2.Volume
 
@@ -1516,7 +1566,6 @@ instance.user_data.add_commands("TOKEN=$(curl -SsfX PUT \"http://169.254.169.254
 You can configure [tag propagation on volume creation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html#cfn-ec2-instance-propagatetagstovolumeoncreation).
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 # machine_image: ec2.IMachineImage
@@ -1535,11 +1584,10 @@ ec2.Instance(self, "Instance",
 You can specify the `throughput` of a GP3 volume from 125 (default) to 1000.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 ec2.Volume(self, "Volume",
     availability_zone="us-east-1a",
-    size=cdk.Size.gibibytes(125),
-    volume_type=EbsDeviceVolumeType.GP3,
+    size=Size.gibibytes(125),
+    volume_type=ec2.EbsDeviceVolumeType.GP3,
     throughput=125
 )
 ```
@@ -1555,7 +1603,6 @@ To do this for a single `Instance`, you can use the `requireImdsv2` property.
 The example below demonstrates IMDSv2 being required on a single `Instance`:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 # machine_image: ec2.IMachineImage
@@ -1578,7 +1625,6 @@ to apply the operation to multiple instances or launch templates, respectively.
 The following example demonstrates how to use the `InstanceRequireImdsv2Aspect` to require IMDSv2 for all EC2 instances in a stack:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 aspect = ec2.InstanceRequireImdsv2Aspect()
 Aspects.of(self).add(aspect)
 ```
@@ -1592,7 +1638,6 @@ By default, a flow log will be created with CloudWatch Logs as the destination.
 You can create a flow log like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1604,7 +1649,6 @@ ec2.FlowLog(self, "FlowLog",
 Or you can add a Flow Log to a VPC by using the addFlowLog method like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "Vpc")
 
 vpc.add_flow_log("FlowLog")
@@ -1613,7 +1657,6 @@ vpc.add_flow_log("FlowLog")
 You can also add multiple flow logs with different destinations.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "Vpc")
 
 vpc.add_flow_log("FlowLogS3",
@@ -1623,7 +1666,7 @@ vpc.add_flow_log("FlowLogS3",
 # Only reject traffic and interval every minute.
 vpc.add_flow_log("FlowLogCloudWatch",
     traffic_type=ec2.FlowLogTrafficType.REJECT,
-    max_aggregation_interval=FlowLogMaxAggregationInterval.ONE_MINUTE
+    max_aggregation_interval=ec2.FlowLogMaxAggregationInterval.ONE_MINUTE
 )
 ```
 
@@ -1632,7 +1675,6 @@ vpc.add_flow_log("FlowLogCloudWatch",
 You can also custom format flow logs.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 vpc = ec2.Vpc(self, "Vpc")
 
 vpc.add_flow_log("FlowLog",
@@ -1663,7 +1705,6 @@ If you want to customize any of the destination resources you can provide your o
 *CloudWatch Logs*
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1682,7 +1723,6 @@ ec2.FlowLog(self, "FlowLog",
 *S3*
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
@@ -1721,7 +1761,6 @@ or you can use the UserData's convenience functions to aid in the creation of yo
 A user data could be configured to run a script found in an asset through the following:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 from aws_cdk.aws_s3_assets import Asset
 
 # instance: ec2.Instance
@@ -1752,8 +1791,7 @@ When creating a Windows UserData you can use the `persist` option to set whether
 `<persist>true</persist>` [to the user data script](https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/ec2-windows-user-data.html#user-data-scripts). it can be used as follows:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
-windows_user_data = UserData.for_windows(persist=True)
+windows_user_data = ec2.UserData.for_windows(persist=True)
 ```
 
 For a Linux instance, this can be accomplished by using a Multipart user data to configure cloud-config as detailed
@@ -1780,7 +1818,6 @@ Below is an example for creating multipart user data with single body part respo
 of storage used by Docker containers:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 boot_hook_conf = ec2.UserData.for_linux()
 boot_hook_conf.add_commands("cloud-init-per once docker_options echo 'OPTIONS=\"${OPTIONS} --storage-opt dm.basesize=40G\"' >> /etc/sysconfig/docker")
 
@@ -1809,7 +1846,6 @@ to the `MultipartUserData` and designate it as the receiver for these methods. T
 method on `MultipartUserData` with the `makeDefault` argument set to `true`:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 multipart_user_data = ec2.MultipartUserData()
 commands_user_data = ec2.UserData.for_linux()
 multipart_user_data.add_user_data_part(commands_user_data, ec2.MultipartBody.SHELL_SCRIPT, True)
@@ -1832,7 +1868,6 @@ subnet per AZ).
 Importing an existing subnet looks like this:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # Supply all properties
 subnet1 = ec2.Subnet.from_subnet_attributes(self, "SubnetFromAttributes",
     subnet_id="s-1234",
@@ -1855,14 +1890,11 @@ an instance. For information on Launch Templates please see the
 The following demonstrates how to create a launch template with an Amazon Machine Image, and security group.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 
 
 template = ec2.LaunchTemplate(self, "LaunchTemplate",
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-    ),
+    machine_image=ec2.MachineImage.latest_amazon_linux2022(),
     security_group=ec2.SecurityGroup(self, "LaunchTemplateSG",
         vpc=vpc
     )
@@ -1872,7 +1904,6 @@ template = ec2.LaunchTemplate(self, "LaunchTemplate",
 And the following demonstrates how to enable metadata options support.
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 ec2.LaunchTemplate(self, "LaunchTemplate",
     http_endpoint=True,
     http_protocol_ipv6=True,
@@ -1887,7 +1918,6 @@ ec2.LaunchTemplate(self, "LaunchTemplate",
 The following demonstrates how to enable [Detailed Monitoring](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-cloudwatch-new.html) for an EC2 instance. Keep in mind that Detailed Monitoring results in [additional charges](http://aws.amazon.com/cloudwatch/pricing/).
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 
@@ -1895,7 +1925,7 @@ The following demonstrates how to enable [Detailed Monitoring](https://docs.aws.
 ec2.Instance(self, "Instance1",
     vpc=vpc,
     instance_type=instance_type,
-    machine_image=ec2.MachineImage.latest_amazon_linux(),
+    machine_image=ec2.MachineImage.latest_amazon_linux2022(),
     detailed_monitoring=True
 )
 ```
@@ -1918,7 +1948,6 @@ To do so, you need to:
 If these conditions are met, you can connect to the instance from the EC2 Console. Example:
 
 ```python
-# Example automatically generated from non-compiling source. May contain errors.
 # vpc: ec2.Vpc
 # instance_type: ec2.InstanceType
 
@@ -1928,9 +1957,7 @@ ec2.Instance(self, "Instance1",
     instance_type=instance_type,
 
     # Amazon Linux 2 comes with SSM Agent by default
-    machine_image=ec2.MachineImage.latest_amazon_linux(
-        generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-    ),
+    machine_image=ec2.MachineImage.latest_amazon_linux2022(),
 
     # Turn on SSM
     ssm_session_permissions=True
@@ -2566,7 +2593,6 @@ class AddRouteOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             vpc = ec2.Vpc(self, "VPC",
                 subnet_configuration=[ec2.SubnetConfiguration(
                     subnet_type=ec2.SubnetType.PUBLIC,
@@ -2786,6 +2812,208 @@ class AllocatedSubnet:
         )
 
 
+class AmazonLinux2022Kernel(
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2022Kernel",
+):
+    '''Amazon Linux 2022 kernel versions.
+
+    :exampleMetadata: fixture=_generated
+
+    Example::
+
+        # The code below shows an example of how to instantiate this type.
+        # The values are placeholders you should change.
+        from aws_cdk import aws_ec2 as ec2
+        
+        amazon_linux2022_kernel = ec2.AmazonLinux2022Kernel.CDK_LATEST
+    '''
+
+    def __init__(self, version: builtins.str) -> None:
+        '''
+        :param version: -
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__67731f51c6dad8d404e1a6ed177e5a2605da4ce360058d786cf253f72d1aee3d)
+            check_type(argname="argument version", value=version, expected_type=type_hints["version"])
+        jsii.create(self.__class__, self, [version])
+
+    @jsii.member(jsii_name="toString")
+    def to_string(self) -> builtins.str:
+        '''Generate a string representation of the kernel.'''
+        return typing.cast(builtins.str, jsii.invoke(self, "toString", []))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="CDK_LATEST")
+    def CDK_LATEST(cls) -> "AmazonLinux2022Kernel":
+        '''The latest kernel version currently available in a published AMI.
+
+        When a new kernel version is available for an al2022 AMI this will be
+        updated to contain the latest kernel version and will cause your instances
+        to be replaced. Do not store stateful information on the instance if you are
+        using this version.
+        '''
+        return typing.cast("AmazonLinux2022Kernel", jsii.sget(cls, "CDK_LATEST"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="DEFAULT")
+    def DEFAULT(cls) -> "AmazonLinux2022Kernel":
+        '''The default kernel version for Amazon Linux 2022 is 5.15 and the SSM parameter does not include it in the name (i.e. /aws/service/ami-amazon-linux-latest/amzn2022-ami-kernel-default-x86_64).'''
+        return typing.cast("AmazonLinux2022Kernel", jsii.sget(cls, "DEFAULT"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="KERNEL_5_15")
+    def KERNEL_5_15(cls) -> "AmazonLinux2022Kernel":
+        '''Kernel version 5.15.'''
+        return typing.cast("AmazonLinux2022Kernel", jsii.sget(cls, "KERNEL_5_15"))
+
+
+class AmazonLinux2023Kernel(
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2023Kernel",
+):
+    '''Amazon Linux 2023 kernel versions.
+
+    :exampleMetadata: infused
+
+    Example::
+
+        # Example automatically generated from non-compiling source. May contain errors.
+        ec2.Instance(self, "LatestAl2023",
+            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+            # context cache is turned on by default
+            machine_image=ec2.AmazonLinux2023ImageSsmParameter(
+                kernel=ec2.AmazonLinux2023Kernel.KERNEL_6_1
+            )
+        )
+    '''
+
+    def __init__(self, version: builtins.str) -> None:
+        '''
+        :param version: -
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__0ab727190b8ad0e28c2d1ddc702af61630c845ff5aedd9578b75429a06aba8f5)
+            check_type(argname="argument version", value=version, expected_type=type_hints["version"])
+        jsii.create(self.__class__, self, [version])
+
+    @jsii.member(jsii_name="toString")
+    def to_string(self) -> builtins.str:
+        '''Generate a string representation of the kernel.'''
+        return typing.cast(builtins.str, jsii.invoke(self, "toString", []))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="CDK_LATEST")
+    def CDK_LATEST(cls) -> "AmazonLinux2023Kernel":
+        '''The latest kernel version currently available in a published AMI.
+
+        When a new kernel version is available for an al2023 AMI this will be
+        updated to contain the latest kernel version and will cause your instances
+        to be replaced. Do not store stateful information on the instance if you are
+        using this version.
+        '''
+        return typing.cast("AmazonLinux2023Kernel", jsii.sget(cls, "CDK_LATEST"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="DEFAULT")
+    def DEFAULT(cls) -> "AmazonLinux2023Kernel":
+        '''The default kernel version for Amazon Linux 2023 is 6.1 and the SSM parameter does not include it in the name (i.e. /aws/service/ami-amazon-linux-latest/amzn2023-ami-kernel-default-x86_64).'''
+        return typing.cast("AmazonLinux2023Kernel", jsii.sget(cls, "DEFAULT"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="KERNEL_6_1")
+    def KERNEL_6_1(cls) -> "AmazonLinux2023Kernel":
+        '''Kernel version 6.1.'''
+        return typing.cast("AmazonLinux2023Kernel", jsii.sget(cls, "KERNEL_6_1"))
+
+
+class AmazonLinux2Kernel(
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2Kernel",
+):
+    '''Amazon Linux 2 kernel versions.
+
+    :exampleMetadata: infused
+
+    Example::
+
+        # Example automatically generated from non-compiling source. May contain errors.
+        # vpc: ec2.Vpc
+        # instance_type: ec2.InstanceType
+        
+        
+        # Amazon Linux 2
+        ec2.Instance(self, "Instance2",
+            vpc=vpc,
+            instance_type=instance_type,
+            machine_image=ec2.MachineImage.latest_amazon_linux2()
+        )
+        
+        # Amazon Linux 2 with kernel 5.x
+        ec2.Instance(self, "Instance3",
+            vpc=vpc,
+            instance_type=instance_type,
+            machine_image=ec2.AmazonLinux2Image(
+                kernel=ec2.AmazonLinux2Kernel.KERNEL_5_10
+            )
+        )
+        
+        # AWS Linux 2022
+        ec2.Instance(self, "Instance4",
+            vpc=vpc,
+            instance_type=instance_type,
+            machine_image=ec2.MachineImage.latest_amazon_linux2022()
+        )
+        
+        # Graviton 3 Processor
+        ec2.Instance(self, "Instance5",
+            vpc=vpc,
+            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(
+                cpu_type=ec2.AmazonLinuxCpuType.ARM_64
+            )
+        )
+    '''
+
+    def __init__(self, version: builtins.str) -> None:
+        '''
+        :param version: -
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__3d9d80aebc17990a8f3419f9444ec1fdd3e5bc1c150c3db0d42eda409806c7a8)
+            check_type(argname="argument version", value=version, expected_type=type_hints["version"])
+        jsii.create(self.__class__, self, [version])
+
+    @jsii.member(jsii_name="toString")
+    def to_string(self) -> typing.Optional[builtins.str]:
+        '''Generate a string representation of the kernel.'''
+        return typing.cast(typing.Optional[builtins.str], jsii.invoke(self, "toString", []))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="CDK_LATEST")
+    def CDK_LATEST(cls) -> "AmazonLinux2Kernel":
+        '''The latest kernel version currently available in a published AMI.
+
+        When a new kernel version is available for an amzn2 AMI this will be
+        updated to contain the latest kernel version and will cause your instances
+        to be replaced. Do not store stateful information on the instance if you are
+        using this version.
+        '''
+        return typing.cast("AmazonLinux2Kernel", jsii.sget(cls, "CDK_LATEST"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="DEFAULT")
+    def DEFAULT(cls) -> "AmazonLinux2Kernel":
+        '''The default kernel version for Amazon Linux 2 is 4.14 and Linux 4.14.311-233.529.amzn2.x86_64 the SSM parameter does not include it in the name (i.e. /aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-gp2).'''
+        return typing.cast("AmazonLinux2Kernel", jsii.sget(cls, "DEFAULT"))
+
+    @jsii.python.classproperty
+    @jsii.member(jsii_name="KERNEL_5_10")
+    def KERNEL_5_10(cls) -> "AmazonLinux2Kernel":
+        '''Kernel version 5.10.'''
+        return typing.cast("AmazonLinux2Kernel", jsii.sget(cls, "KERNEL_5_10"))
+
+
 @jsii.enum(jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxCpuType")
 class AmazonLinuxCpuType(enum.Enum):
     '''CPU type.
@@ -2902,6 +3130,8 @@ class AmazonLinuxGeneration(enum.Enum):
     '''Amazon Linux 2.'''
     AMAZON_LINUX_2022 = "AMAZON_LINUX_2022"
     '''Amazon Linux 2022.'''
+    AMAZON_LINUX_2023 = "AMAZON_LINUX_2023"
+    '''Amazon Linux 2023.'''
 
 
 @jsii.data_type(
@@ -2946,33 +3176,19 @@ class AmazonLinuxImageProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
-            # vpc: ec2.Vpc
-            # instance_type: ec2.InstanceType
+            # vpc: ec2.IVpc
             
+            lb = elb.LoadBalancer(self, "LB",
+                vpc=vpc
+            )
             
-            ec2.Instance(self, "Instance",
+            # instance to add as the target for load balancer.
+            instance = ec2.Instance(self, "targetInstance",
                 vpc=vpc,
-                instance_type=instance_type,
-                machine_image=ec2.MachineImage.latest_amazon_linux(
-                    # Amazon Linux 2 uses SystemD
-                    generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-                ),
-            
-                init=ec2.CloudFormationInit.from_elements([
-                    # Create a simple config file that runs a Python web server
-                    ec2.InitService.systemd_config_file("simpleserver",
-                        command="/usr/bin/python3 -m http.server 8080",
-                        cwd="/var/www/html"
-                    ),
-                    # Start the server using SystemD
-                    ec2.InitService.enable("simpleserver",
-                        service_manager=ec2.ServiceManager.SYSTEMD
-                    ),
-                    # Drop an example file to show the web server working
-                    ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-                ])
+                instance_type=ec2.InstanceType.of(ec2.InstanceClass.BURSTABLE2, ec2.InstanceSize.MICRO),
+                machine_image=ec2.AmazonLinuxImage(generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2)
             )
+            lb.add_target(elb.InstanceTarget(instance))
         '''
         if __debug__:
             type_hints = typing.get_type_hints(_typecheckingstub__dd95a518c06563a07debc9bf1ca51713b747cf64bded6f7cc81a28680d7ea9fc)
@@ -3029,7 +3245,366 @@ class AmazonLinuxImageProps:
     def cpu_type(self) -> typing.Optional[AmazonLinuxCpuType]:
         '''CPU Type.
 
-        :default: X86_64
+        :default: X86_64
+        '''
+        result = self._values.get("cpu_type")
+        return typing.cast(typing.Optional[AmazonLinuxCpuType], result)
+
+    @builtins.property
+    def edition(self) -> typing.Optional[AmazonLinuxEdition]:
+        '''What edition of Amazon Linux to use.
+
+        :default: Standard
+        '''
+        result = self._values.get("edition")
+        return typing.cast(typing.Optional[AmazonLinuxEdition], result)
+
+    @builtins.property
+    def generation(self) -> typing.Optional[AmazonLinuxGeneration]:
+        '''What generation of Amazon Linux to use.
+
+        :default: AmazonLinux
+        '''
+        result = self._values.get("generation")
+        return typing.cast(typing.Optional[AmazonLinuxGeneration], result)
+
+    @builtins.property
+    def kernel(self) -> typing.Optional["AmazonLinuxKernel"]:
+        '''What kernel version of Amazon Linux to use.
+
+        :default: -
+        '''
+        result = self._values.get("kernel")
+        return typing.cast(typing.Optional["AmazonLinuxKernel"], result)
+
+    @builtins.property
+    def storage(self) -> typing.Optional["AmazonLinuxStorage"]:
+        '''What storage backed image to use.
+
+        :default: GeneralPurpose
+        '''
+        result = self._values.get("storage")
+        return typing.cast(typing.Optional["AmazonLinuxStorage"], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional["UserData"]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional["UserData"], result)
+
+    @builtins.property
+    def virtualization(self) -> typing.Optional["AmazonLinuxVirt"]:
+        '''Virtualization type.
+
+        :default: HVM
+        '''
+        result = self._values.get("virtualization")
+        return typing.cast(typing.Optional["AmazonLinuxVirt"], result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinuxImageProps(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxImageSsmParameterBaseOptions",
+    jsii_struct_bases=[],
+    name_mapping={"cached_in_context": "cachedInContext", "user_data": "userData"},
+)
+class AmazonLinuxImageSsmParameterBaseOptions:
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+    ) -> None:
+        '''Base options for amazon linux ssm parameters.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+
+        :exampleMetadata: fixture=_generated
+
+        Example::
+
+            # The code below shows an example of how to instantiate this type.
+            # The values are placeholders you should change.
+            from aws_cdk import aws_ec2 as ec2
+            
+            # user_data: ec2.UserData
+            
+            amazon_linux_image_ssm_parameter_base_options = ec2.AmazonLinuxImageSsmParameterBaseOptions(
+                cached_in_context=False,
+                user_data=user_data
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__08eb71b09afb1d361b3f043a5c2d7d4be91f84b114302afefc8a69963ee6333f)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {}
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional["UserData"]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional["UserData"], result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinuxImageSsmParameterBaseOptions(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxImageSsmParameterBaseProps",
+    jsii_struct_bases=[AmazonLinuxImageSsmParameterBaseOptions],
+    name_mapping={
+        "cached_in_context": "cachedInContext",
+        "user_data": "userData",
+        "parameter_name": "parameterName",
+    },
+)
+class AmazonLinuxImageSsmParameterBaseProps(AmazonLinuxImageSsmParameterBaseOptions):
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+        parameter_name: builtins.str,
+    ) -> None:
+        '''Base properties for an Amazon Linux SSM Parameter.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        :param parameter_name: The name of the SSM parameter that contains the AMI value.
+
+        :exampleMetadata: fixture=_generated
+
+        Example::
+
+            # The code below shows an example of how to instantiate this type.
+            # The values are placeholders you should change.
+            from aws_cdk import aws_ec2 as ec2
+            
+            # user_data: ec2.UserData
+            
+            amazon_linux_image_ssm_parameter_base_props = ec2.AmazonLinuxImageSsmParameterBaseProps(
+                parameter_name="parameterName",
+            
+                # the properties below are optional
+                cached_in_context=False,
+                user_data=user_data
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__78a32cfc14171e780d6e44d3e6a99faa6da50655ac09560f7b229b0c0c7383f1)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+            check_type(argname="argument parameter_name", value=parameter_name, expected_type=type_hints["parameter_name"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {
+            "parameter_name": parameter_name,
+        }
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional["UserData"]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional["UserData"], result)
+
+    @builtins.property
+    def parameter_name(self) -> builtins.str:
+        '''The name of the SSM parameter that contains the AMI value.'''
+        result = self._values.get("parameter_name")
+        assert result is not None, "Required property 'parameter_name' is missing"
+        return typing.cast(builtins.str, result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinuxImageSsmParameterBaseProps(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxImageSsmParameterCommonOptions",
+    jsii_struct_bases=[AmazonLinuxImageSsmParameterBaseOptions],
+    name_mapping={
+        "cached_in_context": "cachedInContext",
+        "user_data": "userData",
+        "cpu_type": "cpuType",
+        "edition": "edition",
+    },
+)
+class AmazonLinuxImageSsmParameterCommonOptions(
+    AmazonLinuxImageSsmParameterBaseOptions,
+):
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+    ) -> None:
+        '''Common options across all generations.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+
+        :exampleMetadata: fixture=_generated
+
+        Example::
+
+            # The code below shows an example of how to instantiate this type.
+            # The values are placeholders you should change.
+            from aws_cdk import aws_ec2 as ec2
+            
+            # user_data: ec2.UserData
+            
+            amazon_linux_image_ssm_parameter_common_options = ec2.AmazonLinuxImageSsmParameterCommonOptions(
+                cached_in_context=False,
+                cpu_type=ec2.AmazonLinuxCpuType.ARM_64,
+                edition=ec2.AmazonLinuxEdition.STANDARD,
+                user_data=user_data
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__8fcdd01a6ab45c77447fba339b5a9358c3ab40c4833c1f86c68009a6a3bb1422)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+            check_type(argname="argument cpu_type", value=cpu_type, expected_type=type_hints["cpu_type"])
+            check_type(argname="argument edition", value=edition, expected_type=type_hints["edition"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {}
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+        if cpu_type is not None:
+            self._values["cpu_type"] = cpu_type
+        if edition is not None:
+            self._values["edition"] = edition
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional["UserData"]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional["UserData"], result)
+
+    @builtins.property
+    def cpu_type(self) -> typing.Optional[AmazonLinuxCpuType]:
+        '''CPU Type.
+
+        :default: AmazonLinuxCpuType.X86_64
         '''
         result = self._values.get("cpu_type")
         return typing.cast(typing.Optional[AmazonLinuxCpuType], result)
@@ -3038,56 +3613,11 @@ class AmazonLinuxImageProps:
     def edition(self) -> typing.Optional[AmazonLinuxEdition]:
         '''What edition of Amazon Linux to use.
 
-        :default: Standard
+        :default: AmazonLinuxEdition.Standard
         '''
         result = self._values.get("edition")
         return typing.cast(typing.Optional[AmazonLinuxEdition], result)
 
-    @builtins.property
-    def generation(self) -> typing.Optional[AmazonLinuxGeneration]:
-        '''What generation of Amazon Linux to use.
-
-        :default: AmazonLinux
-        '''
-        result = self._values.get("generation")
-        return typing.cast(typing.Optional[AmazonLinuxGeneration], result)
-
-    @builtins.property
-    def kernel(self) -> typing.Optional["AmazonLinuxKernel"]:
-        '''What kernel version of Amazon Linux to use.
-
-        :default: -
-        '''
-        result = self._values.get("kernel")
-        return typing.cast(typing.Optional["AmazonLinuxKernel"], result)
-
-    @builtins.property
-    def storage(self) -> typing.Optional["AmazonLinuxStorage"]:
-        '''What storage backed image to use.
-
-        :default: GeneralPurpose
-        '''
-        result = self._values.get("storage")
-        return typing.cast(typing.Optional["AmazonLinuxStorage"], result)
-
-    @builtins.property
-    def user_data(self) -> typing.Optional["UserData"]:
-        '''Initial user data.
-
-        :default: - Empty UserData for Linux machines
-        '''
-        result = self._values.get("user_data")
-        return typing.cast(typing.Optional["UserData"], result)
-
-    @builtins.property
-    def virtualization(self) -> typing.Optional["AmazonLinuxVirt"]:
-        '''Virtualization type.
-
-        :default: HVM
-        '''
-        result = self._values.get("virtualization")
-        return typing.cast(typing.Optional["AmazonLinuxVirt"], result)
-
     def __eq__(self, rhs: typing.Any) -> builtins.bool:
         return isinstance(rhs, self.__class__) and rhs._values == self._values
 
@@ -3095,69 +3625,14 @@ class AmazonLinuxImageProps:
         return not (rhs == self)
 
     def __repr__(self) -> str:
-        return "AmazonLinuxImageProps(%s)" % ", ".join(
+        return "AmazonLinuxImageSsmParameterCommonOptions(%s)" % ", ".join(
             k + "=" + repr(v) for k, v in self._values.items()
         )
 
 
 @jsii.enum(jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxKernel")
 class AmazonLinuxKernel(enum.Enum):
-    '''Amazon Linux Kernel.
-
-    :exampleMetadata: infused
-
-    Example::
-
-        # Example automatically generated from non-compiling source. May contain errors.
-        # vpc: ec2.Vpc
-        # instance_type: ec2.InstanceType
-        
-        
-        # Amazon Linux 1
-        ec2.Instance(self, "Instance1",
-            vpc=vpc,
-            instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux()
-        )
-        
-        # Amazon Linux 2
-        ec2.Instance(self, "Instance2",
-            vpc=vpc,
-            instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-            )
-        )
-        
-        # Amazon Linux 2 with kernel 5.x
-        ec2.Instance(self, "Instance3",
-            vpc=vpc,
-            instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2,
-                kernel=ec2.AmazonLinuxKernel.KERNEL5_X
-            )
-        )
-        
-        # AWS Linux 2022
-        ec2.Instance(self, "Instance4",
-            vpc=vpc,
-            instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2022
-            )
-        )
-        
-        # Graviton 3 Processor
-        ec2.Instance(self, "Instance5",
-            vpc=vpc,
-            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2,
-                cpu_type=ec2.AmazonLinuxCpuType.ARM_64
-            )
-        )
-    '''
+    '''Amazon Linux Kernel.'''
 
     KERNEL5_X = "KERNEL5_X"
     '''Standard edition.'''
@@ -3165,7 +3640,8 @@ class AmazonLinuxKernel(enum.Enum):
 
 @jsii.enum(jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxStorage")
 class AmazonLinuxStorage(enum.Enum):
-    '''
+    '''Available storage options for Amazon Linux images Only applies to Amazon Linux & Amazon Linux 2.
+
     :exampleMetadata: lit=aws-autoscaling/test/example.images.lit.ts infused
 
     Example::
@@ -3273,7 +3749,6 @@ class ApplyCloudFormationInitOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             # instance_type: ec2.InstanceType
             # machine_image: ec2.IMachineImage
@@ -3713,14 +4188,13 @@ class AwsIpamProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             from aws_cdk.aws_ec2 import IpAddresses
             
             # pool: ec2.CfnIPAMPool
             
             
-            ec2.Vpc(stack, "TheVPC",
-                ip_addresses=ec2.IpAddresses.aws_ipam_allocation(
+            ec2.Vpc(self, "TheVPC",
+                ip_addresses=IpAddresses.aws_ipam_allocation(
                     ipv4_ipam_pool_id=pool.ref,
                     ipv4_netmask_length=18,
                     default_subnet_ipv4_netmask_length=24
@@ -4111,7 +4585,6 @@ class BlockDeviceVolume(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         # machine_image: ec2.IMachineImage
@@ -18345,7 +18818,7 @@ class CfnInstance(
         :param private_ip_address: The primary IPv4 address. You must specify a value from the IPv4 address range of the subnet. Only one private IP address can be designated as primary. You can't specify this option if you've specified the option to designate a private IP address as the primary IP address in a network interface specification. You cannot specify this option if you're launching more than one instance in the request. You cannot specify this option and the network interfaces option in the same request. If you make an update to an instance that requires replacement, you must assign a new private IP address. During a replacement, AWS CloudFormation creates a new instance but doesn't delete the old instance until the stack has successfully updated. If the stack update fails, AWS CloudFormation uses the old instance to roll back the stack to the previous working state. The old and new instances cannot have the same private IP address.
         :param propagate_tags_to_volume_on_creation: Indicates whether to assign the tags from the instance to all of the volumes attached to the instance at launch. If you specify ``true`` and you assign tags to the instance, those tags are automatically assigned to all of the volumes that you attach to the instance at launch. If you specify ``false`` , those tags are not assigned to the attached volumes.
         :param ramdisk_id: The ID of the RAM disk to select. Some kernels require additional drivers at launch. Check the kernel requirements for information about whether you need to specify a RAM disk. To find kernel requirements, go to the AWS Resource Center and search for the kernel ID. .. epigraph:: We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see `PV-GRUB <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html>`_ in the *Amazon EC2 User Guide* .
-        :param security_group_ids: The IDs of the security groups. You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ . If you specify a network interface, you must specify any security groups as part of the network interface.
+        :param security_group_ids: The IDs of the security groups. You can specify the IDs of existing security groups and references to resources created by the stack template. If you specify a network interface, you must specify any security groups as part of the network interface.
         :param security_groups: [Default VPC] The names of the security groups. For a nondefault VPC, you must use security group IDs instead. You cannot specify this option and the network interfaces option in the same request. The list can contain both the name of existing Amazon EC2 security groups or references to AWS::EC2::SecurityGroup resources created in the template. Default: Amazon EC2 uses the default security group.
         :param source_dest_check: Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. If the value is ``true`` , source/destination checks are enabled; otherwise, they are disabled. The default value is ``true`` . You must disable source/destination checks if the instance runs services such as network address translation, routing, or firewalls.
         :param ssm_associations: The SSM `document <https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-document.html>`_ and parameter values in AWS Systems Manager to associate with this instance. To use this property, you must specify an IAM instance profile role for the instance. For more information, see `Create an IAM instance profile for Systems Manager <https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-configuring-access-role.html>`_ in the *AWS Systems Manager User Guide* . .. epigraph:: You can currently associate only one document with an instance.
@@ -19180,7 +19653,9 @@ class CfnInstance(
     @builtins.property
     @jsii.member(jsii_name="securityGroupIds")
     def security_group_ids(self) -> typing.Optional[typing.List[builtins.str]]:
-        '''The IDs of the security groups. You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ .
+        '''The IDs of the security groups.
+
+        You can specify the IDs of existing security groups and references to resources created by the stack template.
 
         If you specify a network interface, you must specify any security groups as part of the network interface.
 
@@ -21184,7 +21659,7 @@ class CfnInstanceProps:
         :param private_ip_address: The primary IPv4 address. You must specify a value from the IPv4 address range of the subnet. Only one private IP address can be designated as primary. You can't specify this option if you've specified the option to designate a private IP address as the primary IP address in a network interface specification. You cannot specify this option if you're launching more than one instance in the request. You cannot specify this option and the network interfaces option in the same request. If you make an update to an instance that requires replacement, you must assign a new private IP address. During a replacement, AWS CloudFormation creates a new instance but doesn't delete the old instance until the stack has successfully updated. If the stack update fails, AWS CloudFormation uses the old instance to roll back the stack to the previous working state. The old and new instances cannot have the same private IP address.
         :param propagate_tags_to_volume_on_creation: Indicates whether to assign the tags from the instance to all of the volumes attached to the instance at launch. If you specify ``true`` and you assign tags to the instance, those tags are automatically assigned to all of the volumes that you attach to the instance at launch. If you specify ``false`` , those tags are not assigned to the attached volumes.
         :param ramdisk_id: The ID of the RAM disk to select. Some kernels require additional drivers at launch. Check the kernel requirements for information about whether you need to specify a RAM disk. To find kernel requirements, go to the AWS Resource Center and search for the kernel ID. .. epigraph:: We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see `PV-GRUB <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html>`_ in the *Amazon EC2 User Guide* .
-        :param security_group_ids: The IDs of the security groups. You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ . If you specify a network interface, you must specify any security groups as part of the network interface.
+        :param security_group_ids: The IDs of the security groups. You can specify the IDs of existing security groups and references to resources created by the stack template. If you specify a network interface, you must specify any security groups as part of the network interface.
         :param security_groups: [Default VPC] The names of the security groups. For a nondefault VPC, you must use security group IDs instead. You cannot specify this option and the network interfaces option in the same request. The list can contain both the name of existing Amazon EC2 security groups or references to AWS::EC2::SecurityGroup resources created in the template. Default: Amazon EC2 uses the default security group.
         :param source_dest_check: Enable or disable source/destination checks, which ensure that the instance is either the source or the destination of any traffic that it receives. If the value is ``true`` , source/destination checks are enabled; otherwise, they are disabled. The default value is ``true`` . You must disable source/destination checks if the instance runs services such as network address translation, routing, or firewalls.
         :param ssm_associations: The SSM `document <https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-document.html>`_ and parameter values in AWS Systems Manager to associate with this instance. To use this property, you must specify an IAM instance profile role for the instance. For more information, see `Create an IAM instance profile for Systems Manager <https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-configuring-access-role.html>`_ in the *AWS Systems Manager User Guide* . .. epigraph:: You can currently associate only one document with an instance.
@@ -21856,7 +22331,9 @@ class CfnInstanceProps:
 
     @builtins.property
     def security_group_ids(self) -> typing.Optional[typing.List[builtins.str]]:
-        '''The IDs of the security groups. You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ .
+        '''The IDs of the security groups.
+
+        You can specify the IDs of existing security groups and references to resources created by the stack template.
 
         If you specify a network interface, you must specify any security groups as part of the network interface.
 
@@ -24746,7 +25223,7 @@ class CfnLaunchTemplate(
             :param placement: The placement for the instance.
             :param private_dns_name_options: The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries should be handled. For more information, see `Amazon EC2 instance hostname types <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html>`_ in the *Amazon Elastic Compute Cloud User Guide* .
             :param ram_disk_id: The ID of the RAM disk. .. epigraph:: We recommend that you use PV-GRUB instead of kernels and RAM disks. For more information, see `User provided kernels <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UserProvidedkernels.html>`_ in the *Amazon Elastic Compute Cloud User Guide* .
-            :param security_group_ids: One or more security group IDs. You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ . You cannot specify both a security group ID and security name in the same request.
+            :param security_group_ids: The IDs of the security groups. You can specify the IDs of existing security groups and references to resources created by the stack template.
             :param security_groups: One or more security group names. For a nondefault VPC, you must use security group IDs instead. You cannot specify both a security group ID and security name in the same request.
             :param tag_specifications: The tags to apply to the resources that are created during instance launch. You can specify tags for the following resources only: - Instances - Volumes - Elastic graphics - Spot Instance requests - Network interfaces To tag a resource after it has been created, see `CreateTags <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html>`_ . .. epigraph:: To tag the launch template itself, you must use the `TagSpecification <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateLaunchTemplate.html>`_ parameter.
             :param user_data: The user data to make available to the instance. You must provide base64-encoded text. User data is limited to 16 KB. For more information, see `Run commands on your Linux instance at launch <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html>`_ (Linux) or `Work with instance user data <https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/instancedata-add-user-data.html>`_ (Windows) in the *Amazon Elastic Compute Cloud User Guide* . If you are creating the launch template for use with AWS Batch , the user data must be provided in the `MIME multi-part archive format <https://docs.aws.amazon.com/https://cloudinit.readthedocs.io/en/latest/topics/format.html#mime-multi-part-archive>`_ . For more information, see `Amazon EC2 user data in launch templates <https://docs.aws.amazon.com/batch/latest/userguide/launch-templates.html>`_ in the *AWS Batch User Guide* .
@@ -25389,9 +25866,9 @@ class CfnLaunchTemplate(
 
         @builtins.property
         def security_group_ids(self) -> typing.Optional[typing.List[builtins.str]]:
-            '''One or more security group IDs.
+            '''The IDs of the security groups.
 
-            You can create a security group using `CreateSecurityGroup <https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateSecurityGroup.html>`_ . You cannot specify both a security group ID and security name in the same request.
+            You can specify the IDs of existing security groups and references to resources created by the stack template.
 
             :link: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-securitygroupids
             '''
@@ -57009,7 +57486,7 @@ class CfnVolume(
 
         :param scope: - scope in which this resource is defined.
         :param id: - scoped id of the resource.
-        :param availability_zone: The Availability Zone in which to create the volume.
+        :param availability_zone: The ID of the Availability Zone in which to create the volume. For example, ``us-east-1a`` .
         :param auto_enable_io: Indicates whether the volume is auto-enabled for I/O operations. By default, Amazon EBS disables I/O to the volume from attached EC2 instances when it determines that a volume's data is potentially inconsistent. If the consistency of the volume is not a concern, and you prefer that the volume be made available immediately if it's impaired, you can configure the volume to automatically enable I/O.
         :param encrypted: Indicates whether the volume should be encrypted. The effect of setting the encryption state to ``true`` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see `Encryption by default <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default>`_ in the *Amazon Elastic Compute Cloud User Guide* . Encrypted Amazon EBS volumes must be attached to instances that support Amazon EBS encryption. For more information, see `Supported instance types <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#EBSEncryption_supported_instances>`_ .
         :param iops: The number of I/O operations per second (IOPS). For ``gp3`` , ``io1`` , and ``io2`` volumes, this represents the number of IOPS that are provisioned for the volume. For ``gp2`` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. The following are the supported values for each volume type: - ``gp3`` : 3,000-16,000 IOPS - ``io1`` : 100-64,000 IOPS - ``io2`` : 100-64,000 IOPS ``io1`` and ``io2`` volumes support up to 64,000 IOPS only on `Instances built on the Nitro System <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances>`_ . Other instance families support performance up to 32,000 IOPS. This parameter is required for ``io1`` and ``io2`` volumes. The default for ``gp3`` volumes is 3,000 IOPS. This parameter is not supported for ``gp2`` , ``st1`` , ``sc1`` , or ``standard`` volumes.
@@ -57099,7 +57576,9 @@ class CfnVolume(
     @builtins.property
     @jsii.member(jsii_name="availabilityZone")
     def availability_zone(self) -> builtins.str:
-        '''The Availability Zone in which to create the volume.
+        '''The ID of the Availability Zone in which to create the volume.
+
+        For example, ``us-east-1a`` .
 
         :link: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-availabilityzone
         '''
@@ -57624,7 +58103,7 @@ class CfnVolumeProps:
     ) -> None:
         '''Properties for defining a ``CfnVolume``.
 
-        :param availability_zone: The Availability Zone in which to create the volume.
+        :param availability_zone: The ID of the Availability Zone in which to create the volume. For example, ``us-east-1a`` .
         :param auto_enable_io: Indicates whether the volume is auto-enabled for I/O operations. By default, Amazon EBS disables I/O to the volume from attached EC2 instances when it determines that a volume's data is potentially inconsistent. If the consistency of the volume is not a concern, and you prefer that the volume be made available immediately if it's impaired, you can configure the volume to automatically enable I/O.
         :param encrypted: Indicates whether the volume should be encrypted. The effect of setting the encryption state to ``true`` depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see `Encryption by default <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default>`_ in the *Amazon Elastic Compute Cloud User Guide* . Encrypted Amazon EBS volumes must be attached to instances that support Amazon EBS encryption. For more information, see `Supported instance types <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#EBSEncryption_supported_instances>`_ .
         :param iops: The number of I/O operations per second (IOPS). For ``gp3`` , ``io1`` , and ``io2`` volumes, this represents the number of IOPS that are provisioned for the volume. For ``gp2`` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. The following are the supported values for each volume type: - ``gp3`` : 3,000-16,000 IOPS - ``io1`` : 100-64,000 IOPS - ``io2`` : 100-64,000 IOPS ``io1`` and ``io2`` volumes support up to 64,000 IOPS only on `Instances built on the Nitro System <https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances>`_ . Other instance families support performance up to 32,000 IOPS. This parameter is required for ``io1`` and ``io2`` volumes. The default for ``gp3`` volumes is 3,000 IOPS. This parameter is not supported for ``gp2`` , ``st1`` , ``sc1`` , or ``standard`` volumes.
@@ -57708,7 +58187,9 @@ class CfnVolumeProps:
 
     @builtins.property
     def availability_zone(self) -> builtins.str:
-        '''The Availability Zone in which to create the volume.
+        '''The ID of the Availability Zone in which to create the volume.
+
+        For example, ``us-east-1a`` .
 
         :link: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-volume.html#cfn-ec2-volume-availabilityzone
         '''
@@ -59396,7 +59877,6 @@ class CloudFormationInit(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         
@@ -59404,12 +59884,9 @@ class CloudFormationInit(
         ec2.Instance(self, "Instance",
             vpc=vpc,
             instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                # Amazon Linux 2 uses SystemD
-                generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
         
-            init=ec2.CloudFormationInit.from_elements([
+            init=ec2.CloudFormationInit.from_elements(
                 # Create a simple config file that runs a Python web server
                 ec2.InitService.systemd_config_file("simpleserver",
                     command="/usr/bin/python3 -m http.server 8080",
@@ -59420,8 +59897,7 @@ class CloudFormationInit(
                     service_manager=ec2.ServiceManager.SYSTEMD
                 ),
                 # Drop an example file to show the web server working
-                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-            ])
+                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
         )
     '''
 
@@ -59727,7 +60203,6 @@ class ConfigSetProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             # instance_type: ec2.InstanceType
             # machine_image: ec2.IMachineImage
@@ -60422,7 +60897,6 @@ class ExecuteFileOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             from aws_cdk.aws_s3_assets import Asset
             
             # instance: ec2.Instance
@@ -60491,7 +60965,6 @@ class FlowLogDestination(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
@@ -60780,7 +61253,6 @@ class FlowLogMaxAggregationInterval(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         vpc = ec2.Vpc(self, "Vpc")
         
         vpc.add_flow_log("FlowLogS3",
@@ -60790,7 +61262,7 @@ class FlowLogMaxAggregationInterval(enum.Enum):
         # Only reject traffic and interval every minute.
         vpc.add_flow_log("FlowLogCloudWatch",
             traffic_type=ec2.FlowLogTrafficType.REJECT,
-            max_aggregation_interval=FlowLogMaxAggregationInterval.ONE_MINUTE
+            max_aggregation_interval=ec2.FlowLogMaxAggregationInterval.ONE_MINUTE
         )
     '''
 
@@ -60830,7 +61302,6 @@ class FlowLogOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             vpc = ec2.Vpc(self, "Vpc")
             
             vpc.add_flow_log("FlowLogS3",
@@ -60840,7 +61311,7 @@ class FlowLogOptions:
             # Only reject traffic and interval every minute.
             vpc.add_flow_log("FlowLogCloudWatch",
                 traffic_type=ec2.FlowLogTrafficType.REJECT,
-                max_aggregation_interval=FlowLogMaxAggregationInterval.ONE_MINUTE
+                max_aggregation_interval=ec2.FlowLogMaxAggregationInterval.ONE_MINUTE
             )
         '''
         if __debug__:
@@ -60954,7 +61425,6 @@ class FlowLogProps(FlowLogOptions):
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             
             
@@ -61081,7 +61551,6 @@ class FlowLogResourceType(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
@@ -61200,7 +61669,6 @@ class FlowLogTrafficType(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         vpc = ec2.Vpc(self, "Vpc")
         
         vpc.add_flow_log("FlowLogS3",
@@ -61210,7 +61678,7 @@ class FlowLogTrafficType(enum.Enum):
         # Only reject traffic and interval every minute.
         vpc.add_flow_log("FlowLogCloudWatch",
             traffic_type=ec2.FlowLogTrafficType.REJECT,
-            max_aggregation_interval=FlowLogMaxAggregationInterval.ONE_MINUTE
+            max_aggregation_interval=ec2.FlowLogMaxAggregationInterval.ONE_MINUTE
         )
     '''
 
@@ -61357,7 +61825,6 @@ class GatewayVpcEndpointOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             
             
@@ -61460,7 +61927,6 @@ class GatewayVpcEndpointProps(GatewayVpcEndpointOptions):
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             
             
@@ -64010,7 +64476,6 @@ class InitCommandOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             handle = ec2.InitServiceRestartHandle()
             ec2.CloudFormationInit.from_elements(
                 ec2.InitCommand.shell_command("/usr/bin/custom-nginx-install.sh", service_restart_handles=[handle]),
@@ -64188,7 +64653,6 @@ class InitConfig(metaclass=jsii.JSIIMeta, jsii_type="aws-cdk-lib.aws_ec2.InitCon
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         # machine_image: ec2.IMachineImage
@@ -64280,7 +64744,6 @@ class InitElement(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # my_bucket: s3.Bucket
         
         
@@ -64327,7 +64790,6 @@ class InitFile(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         
@@ -64335,12 +64797,9 @@ class InitFile(
         ec2.Instance(self, "Instance",
             vpc=vpc,
             instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                # Amazon Linux 2 uses SystemD
-                generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
         
-            init=ec2.CloudFormationInit.from_elements([
+            init=ec2.CloudFormationInit.from_elements(
                 # Create a simple config file that runs a Python web server
                 ec2.InitService.systemd_config_file("simpleserver",
                     command="/usr/bin/python3 -m http.server 8080",
@@ -64351,8 +64810,7 @@ class InitFile(
                     service_manager=ec2.ServiceManager.SYSTEMD
                 ),
                 # Drop an example file to show the web server working
-                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-            ])
+                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
         )
     '''
 
@@ -64766,7 +65224,6 @@ class InitFileOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # my_bucket: s3.Bucket
             
             
@@ -64883,7 +65340,6 @@ class InitGroup(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         # machine_image: ec2.IMachineImage
@@ -64990,7 +65446,6 @@ class InitPackage(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         # machine_image: ec2.IMachineImage
@@ -65233,7 +65688,6 @@ class InitService(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # my_bucket: s3.Bucket
         
         
@@ -65375,7 +65829,6 @@ class InitServiceOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # my_bucket: s3.Bucket
             
             
@@ -65483,7 +65936,6 @@ class InitServiceRestartHandle(
     For example, the following will run a custom command to install Nginx,
     and trigger the nginx service to be restarted after the command has run::
 
-       # Example automatically generated from non-compiling source. May contain errors.
        handle = ec2.InitServiceRestartHandle()
        ec2.CloudFormationInit.from_elements(
            ec2.InitCommand.shell_command("/usr/bin/custom-nginx-install.sh", service_restart_handles=[handle]),
@@ -65493,7 +65945,6 @@ class InitServiceRestartHandle(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # my_bucket: s3.Bucket
         
         
@@ -65522,7 +65973,6 @@ class InitSource(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # my_bucket: s3.Bucket
         
         
@@ -65734,7 +66184,6 @@ class InitSourceOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # my_bucket: s3.Bucket
             
             
@@ -65793,7 +66242,6 @@ class InitUser(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         # machine_image: ec2.IMachineImage
@@ -66006,7 +66454,6 @@ class Instance(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         
@@ -66014,12 +66461,9 @@ class Instance(
         ec2.Instance(self, "Instance",
             vpc=vpc,
             instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                # Amazon Linux 2 uses SystemD
-                generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
         
-            init=ec2.CloudFormationInit.from_elements([
+            init=ec2.CloudFormationInit.from_elements(
                 # Create a simple config file that runs a Python web server
                 ec2.InitService.systemd_config_file("simpleserver",
                     command="/usr/bin/python3 -m http.server 8080",
@@ -66030,8 +66474,7 @@ class Instance(
                     service_manager=ec2.ServiceManager.SYSTEMD
                 ),
                 # Drop an example file to show the web server working
-                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-            ])
+                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
         )
     '''
 
@@ -66773,7 +67216,6 @@ class InstanceProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             # instance_type: ec2.InstanceType
             
@@ -66781,12 +67223,9 @@ class InstanceProps:
             ec2.Instance(self, "Instance",
                 vpc=vpc,
                 instance_type=instance_type,
-                machine_image=ec2.MachineImage.latest_amazon_linux(
-                    # Amazon Linux 2 uses SystemD
-                    generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-                ),
+                machine_image=ec2.MachineImage.latest_amazon_linux2022(),
             
-                init=ec2.CloudFormationInit.from_elements([
+                init=ec2.CloudFormationInit.from_elements(
                     # Create a simple config file that runs a Python web server
                     ec2.InitService.systemd_config_file("simpleserver",
                         command="/usr/bin/python3 -m http.server 8080",
@@ -66797,8 +67236,7 @@ class InstanceProps:
                         service_manager=ec2.ServiceManager.SYSTEMD
                     ),
                     # Drop an example file to show the web server working
-                    ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-                ])
+                    ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
             )
         '''
         if isinstance(init_options, dict):
@@ -67029,7 +67467,6 @@ class InstanceProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             role = iam.Role(self, "MyRole",
                 assumed_by=iam.ServicePrincipal("ec2.amazonaws.com")
             )
@@ -67153,7 +67590,6 @@ class InstanceRequireImdsv2Aspect(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         aspect = ec2.InstanceRequireImdsv2Aspect()
         Aspects.of(self).add(aspect)
     '''
@@ -67293,25 +67729,20 @@ class InstanceSize(enum.Enum):
 
     Example::
 
-        # build: gamelift.Build
-        
+        # vpc: ec2.Vpc
         
-        fleet = gamelift.BuildFleet(self, "Game server fleet",
-            fleet_name="test-fleet",
-            content=build,
-            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C4, ec2.InstanceSize.LARGE),
-            runtime_configuration=gamelift.RuntimeConfiguration(
-                server_processes=[gamelift.ServerProcess(
-                    launch_path="/local/game/GameLiftExampleServer.x86_64"
-                )]
-            ),
-            ingress_rules=[gamelift.IngressRule(
-                source=gamelift.Peer.any_ipv4(),
-                port=gamelift.Port.tcp_range(100, 200)
-            )]
+        cluster = rds.DatabaseCluster(self, "Database",
+            engine=rds.DatabaseClusterEngine.aurora_mysql(version=rds.AuroraMysqlEngineVersion.VER_2_08_1),
+            credentials=rds.Credentials.from_generated_secret("clusteradmin"),  # Optional - will default to 'admin' username and generated password
+            instance_props=rds.InstanceProps(
+                # optional , defaults to t3.medium
+                instance_type=ec2.InstanceType.of(ec2.InstanceClass.BURSTABLE2, ec2.InstanceSize.SMALL),
+                vpc_subnets=ec2.SubnetSelection(
+                    subnet_type=ec2.SubnetType.PRIVATE_WITH_EGRESS
+                ),
+                vpc=vpc
+            )
         )
-        # Allowing a specific CIDR for port 1111 on UDP Protocol
-        fleet.add_ingress_rule(gamelift.Peer.ipv4("1.2.3.4/32"), gamelift.Port.udp(1111))
     '''
 
     NANO = "NANO"
@@ -68831,7 +69262,6 @@ class InterfaceVpcEndpointProps(InterfaceVpcEndpointOptions):
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             
             
@@ -68968,7 +69398,6 @@ class InterfaceVpcEndpointService(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
@@ -69024,18 +69453,51 @@ class IpAddresses(metaclass=jsii.JSIIMeta, jsii_type="aws-cdk-lib.aws_ec2.IpAddr
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
-        from aws_cdk.aws_ec2 import IpAddresses
+        vpc = ec2.Vpc(self, "TheVPC",
+            # 'IpAddresses' configures the IP range and size of the entire VPC.
+            # The IP space will be divided based on configuration for the subnets.
+            ip_addresses=ec2.IpAddresses.cidr("10.0.0.0/21"),
+        
+            # 'maxAzs' configures the maximum number of availability zones to use.
+            # If you want to specify the exact availability zones you want the VPC
+            # to use, use `availabilityZones` instead.
+            max_azs=3,
         
-        # pool: ec2.CfnIPAMPool
+            # 'subnetConfiguration' specifies the "subnet groups" to create.
+            # Every subnet group will have a subnet for each AZ, so this
+            # configuration will create `3 groups × 3 AZs = 9` subnets.
+            subnet_configuration=[ec2.SubnetConfiguration(
+                # 'subnetType' controls Internet access, as described above.
+                subnet_type=ec2.SubnetType.PUBLIC,
         
+                # 'name' is used to name this particular subnet group. You will have to
+                # use the name for subnet selection if you have more than one subnet
+                # group of the same type.
+                name="Ingress",
         
-        ec2.Vpc(stack, "TheVPC",
-            ip_addresses=ec2.IpAddresses.aws_ipam_allocation(
-                ipv4_ipam_pool_id=pool.ref,
-                ipv4_netmask_length=18,
-                default_subnet_ipv4_netmask_length=24
+                # 'cidrMask' specifies the IP addresses in the range of of individual
+                # subnets in the group. Each of the subnets in this group will contain
+                # `2^(32 address bits - 24 subnet bits) - 2 reserved addresses = 254`
+                # usable IP addresses.
+                #
+                # If 'cidrMask' is left out the available address space is evenly
+                # divided across the remaining subnet groups.
+                cidr_mask=24
+            ), ec2.SubnetConfiguration(
+                cidr_mask=24,
+                name="Application",
+                subnet_type=ec2.SubnetType.PRIVATE_WITH_EGRESS
+            ), ec2.SubnetConfiguration(
+                cidr_mask=28,
+                name="Database",
+                subnet_type=ec2.SubnetType.PRIVATE_ISOLATED,
+        
+                # 'reserved' can be used to reserve IP address space. No resources will
+                # be created for this subnet, but the IP range will be kept available for
+                # future creation of this subnet, or even for future subdivision.
+                reserved=True
             )
+            ]
         )
     '''
 
@@ -69094,14 +69556,11 @@ class LaunchTemplate(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
         template = ec2.LaunchTemplate(self, "LaunchTemplate",
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
             security_group=ec2.SecurityGroup(self, "LaunchTemplateSG",
                 vpc=vpc
             )
@@ -69438,7 +69897,6 @@ class LaunchTemplateHttpTokens(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         ec2.LaunchTemplate(self, "LaunchTemplate",
             http_endpoint=True,
             http_protocol_ipv6=True,
@@ -69542,14 +70000,11 @@ class LaunchTemplateProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             
             
             template = ec2.LaunchTemplate(self, "LaunchTemplate",
-                machine_image=ec2.MachineImage.latest_amazon_linux(
-                    generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-                ),
+                machine_image=ec2.MachineImage.latest_amazon_linux2022(),
                 security_group=ec2.SecurityGroup(self, "LaunchTemplateSG",
                     vpc=vpc
                 )
@@ -69839,7 +70294,6 @@ class LaunchTemplateProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             role = iam.Role(self, "MyRole",
                 assumed_by=iam.ServicePrincipal("ec2.amazonaws.com")
             )
@@ -70319,7 +70773,6 @@ class LogFormat(metaclass=jsii.JSIIMeta, jsii_type="aws-cdk-lib.aws_ec2.LogForma
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         vpc = ec2.Vpc(self, "Vpc")
         
         vpc.add_flow_log("FlowLog",
@@ -70933,7 +71386,7 @@ class MachineImage(
         user_data: typing.Optional["UserData"] = None,
         virtualization: typing.Optional[AmazonLinuxVirt] = None,
     ) -> IMachineImage:
-        '''An Amazon Linux image that is automatically kept up-to-date.
+        '''(deprecated) An Amazon Linux image that is automatically kept up-to-date.
 
         This Machine Image automatically updates to the latest version on every
         deployment. Be aware this will cause your instances to be replaced when a
@@ -70947,7 +71400,6 @@ class MachineImage(
 
         Specify the desired generation using the ``generation`` property::
 
-           # Example automatically generated from non-compiling source. May contain errors.
            ec2.MachineImage.latest_amazon_linux(
                # Use Amazon Linux 2
                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
@@ -70961,6 +71413,10 @@ class MachineImage(
         :param storage: What storage backed image to use. Default: GeneralPurpose
         :param user_data: Initial user data. Default: - Empty UserData for Linux machines
         :param virtualization: Virtualization type. Default: HVM
+
+        :deprecated: use MachineImage.latestAmazonLinux2 instead
+
+        :stability: deprecated
         '''
         props = AmazonLinuxImageProps(
             cached_in_context=cached_in_context,
@@ -70975,6 +71431,114 @@ class MachineImage(
 
         return typing.cast(IMachineImage, jsii.sinvoke(cls, "latestAmazonLinux", [props]))
 
+    @jsii.member(jsii_name="latestAmazonLinux2")
+    @builtins.classmethod
+    def latest_amazon_linux2(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2Kernel] = None,
+        storage: typing.Optional[AmazonLinuxStorage] = None,
+        virtualization: typing.Optional[AmazonLinuxVirt] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+    ) -> IMachineImage:
+        '''An Amazon Linux 2 image that is automatically kept up-to-date.
+
+        This Machine Image automatically updates to the latest version on every
+        deployment. Be aware this will cause your instances to be replaced when a
+        new version of the image becomes available. Do not store stateful information
+        on the instance if you are using this image.
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: -
+        :param storage: What storage backed image to use. Default: GeneralPurpose
+        :param virtualization: Virtualization type. Default: HVM
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2ImageSsmParameterProps(
+            kernel=kernel,
+            storage=storage,
+            virtualization=virtualization,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(IMachineImage, jsii.sinvoke(cls, "latestAmazonLinux2", [props]))
+
+    @jsii.member(jsii_name="latestAmazonLinux2022")
+    @builtins.classmethod
+    def latest_amazon_linux2022(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2022Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+    ) -> IMachineImage:
+        '''An Amazon Linux 2022 image that is automatically kept up-to-date.
+
+        This Machine Image automatically updates to the latest version on every
+        deployment. Be aware this will cause your instances to be replaced when a
+        new version of the image becomes available. Do not store stateful information
+        on the instance if you are using this image.
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2022Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2022ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(IMachineImage, jsii.sinvoke(cls, "latestAmazonLinux2022", [props]))
+
+    @jsii.member(jsii_name="latestAmazonLinux2023")
+    @builtins.classmethod
+    def latest_amazon_linux2023(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2023Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional["UserData"] = None,
+    ) -> IMachineImage:
+        '''An Amazon Linux 2023 image that is automatically kept up-to-date.
+
+        This Machine Image automatically updates to the latest version on every
+        deployment. Be aware this will cause your instances to be replaced when a
+        new version of the image becomes available. Do not store stateful information
+        on the instance if you are using this image.
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2023Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2023ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(IMachineImage, jsii.sinvoke(cls, "latestAmazonLinux2023", [props]))
+
     @jsii.member(jsii_name="latestWindows")
     @builtins.classmethod
     def latest_windows(
@@ -71137,7 +71701,6 @@ class MultipartBody(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         multipart_user_data = ec2.MultipartUserData()
         commands_user_data = ec2.UserData.for_linux()
         multipart_user_data.add_user_data_part(commands_user_data, ec2.MultipartBody.SHELL_SCRIPT, True)
@@ -71642,7 +72205,6 @@ class NatInstanceProps:
 
         If you have a specific AMI ID you want to use, pass a ``GenericLinuxImage``. For example::
 
-           # Example automatically generated from non-compiling source. May contain errors.
            ec2.NatProvider.instance(
                instance_type=ec2.InstanceType("t3.micro"),
                machine_image=ec2.GenericLinuxImage({
@@ -71853,7 +72415,6 @@ class NatTrafficDirection(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # instance_type: ec2.InstanceType
         
         
@@ -72474,7 +73035,6 @@ class Peer(metaclass=jsii.JSIIMeta, jsii_type="aws-cdk-lib.aws_ec2.Peer"):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # instance_type: ec2.InstanceType
         
         
@@ -72847,7 +73407,6 @@ class Port(metaclass=jsii.JSIIMeta, jsii_type="aws-cdk-lib.aws_ec2.Port"):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # instance_type: ec2.InstanceType
         
         
@@ -73385,7 +73944,6 @@ class RouterType(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         vpc = ec2.Vpc(self, "VPC",
             subnet_configuration=[ec2.SubnetConfiguration(
                 subnet_type=ec2.SubnetType.PUBLIC,
@@ -73606,7 +74164,6 @@ class S3DownloadOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             from aws_cdk.aws_s3_assets import Asset
             
             # instance: ec2.Instance
@@ -73724,7 +74281,6 @@ class SecurityGroup(
     If you have an existing security group you want to use in your CDK application,
     you would import it like this::
 
-       # Example automatically generated from non-compiling source. May contain errors.
        security_group = ec2.SecurityGroup.from_security_group_id(self, "SG", "sg-12345",
            mutable=False
        )
@@ -73733,14 +74289,11 @@ class SecurityGroup(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
         template = ec2.LaunchTemplate(self, "LaunchTemplate",
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
             security_group=ec2.SecurityGroup(self, "LaunchTemplateSG",
                 vpc=vpc
             )
@@ -74099,7 +74652,6 @@ class SecurityGroupImportOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             security_group = ec2.SecurityGroup.from_security_group_id(self, "SG", "sg-12345",
                 mutable=False
             )
@@ -74198,22 +74750,29 @@ class SecurityGroupProps:
         :param disable_inline_rules: Whether to disable inline ingress and egress rule optimization. If this is set to true, ingress and egress rules will not be declared under the SecurityGroup in cloudformation, but will be separate elements. Inlining rules is an optimization for producing smaller stack templates. Sometimes this is not desirable, for example when security group access is managed via tags. The default value can be overriden globally by setting the context variable '@aws-cdk/aws-ec2.securityGroupDisableInlineRules'. Default: false
         :param security_group_name: The name of the security group. For valid values, see the GroupName parameter of the CreateSecurityGroup action in the Amazon EC2 API Reference. It is not recommended to use an explicit group name. Default: If you don't specify a GroupName, AWS CloudFormation generates a unique physical ID and uses that ID for the group name.
 
-        :exampleMetadata: infused
+        :exampleMetadata: fixture=with-vpc infused
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
-            # vpc: ec2.Vpc
+            # Stack 1
+            # stack1: Stack
+            # stack2: Stack
             
             
-            template = ec2.LaunchTemplate(self, "LaunchTemplate",
-                machine_image=ec2.MachineImage.latest_amazon_linux(
-                    generation=ec2.AmazonLinuxGeneration.AMAZON_LINUX_2
-                ),
-                security_group=ec2.SecurityGroup(self, "LaunchTemplateSG",
-                    vpc=vpc
-                )
+            sg1 = ec2.SecurityGroup(stack1, "SG1",
+                allow_all_outbound=False,  # if this is `true` then no egress rule will be created
+                vpc=vpc
             )
+            
+            # Stack 2
+            sg2 = ec2.SecurityGroup(stack2, "SG2",
+                allow_all_outbound=False,  # if this is `true` then no egress rule will be created
+                vpc=vpc
+            )
+            
+            # `connections.allowTo` on `sg1` since we want the
+            # rules to be created in Stack1
+            sg1.connections.allow_to(sg2, ec2.Port.tcp(3333))
         '''
         if __debug__:
             type_hints = typing.get_type_hints(_typecheckingstub__4e55e0c52b51f92e83b1f8d6b7a5b22268d0369a14dab808b8f2f5f233e5b622)
@@ -74367,9 +74926,8 @@ class SelectedSubnets:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             vpc = ec2.Vpc(self, "TheVPC",
-                ip_addresses=IpAddresses.cidr("10.0.0.0/16")
+                ip_addresses=ec2.IpAddresses.cidr("10.0.0.0/16")
             )
             
             # Iterate the private subnets
@@ -74469,7 +75027,6 @@ class ServiceManager(enum.Enum):
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         # instance_type: ec2.InstanceType
         
@@ -74477,12 +75034,9 @@ class ServiceManager(enum.Enum):
         ec2.Instance(self, "Instance",
             vpc=vpc,
             instance_type=instance_type,
-            machine_image=ec2.MachineImage.latest_amazon_linux(
-                # Amazon Linux 2 uses SystemD
-                generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-            ),
+            machine_image=ec2.MachineImage.latest_amazon_linux2022(),
         
-            init=ec2.CloudFormationInit.from_elements([
+            init=ec2.CloudFormationInit.from_elements(
                 # Create a simple config file that runs a Python web server
                 ec2.InitService.systemd_config_file("simpleserver",
                     command="/usr/bin/python3 -m http.server 8080",
@@ -74493,8 +75047,7 @@ class ServiceManager(enum.Enum):
                     service_manager=ec2.ServiceManager.SYSTEMD
                 ),
                 # Drop an example file to show the web server working
-                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-            ])
+                ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
         )
     '''
 
@@ -75002,7 +75555,6 @@ class SubnetAttributes:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # Supply all properties
             subnet1 = ec2.Subnet.from_subnet_attributes(self, "SubnetFromAttributes",
                 subnet_id="s-1234",
@@ -75954,7 +76506,6 @@ class SystemdConfigFileOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # vpc: ec2.Vpc
             # instance_type: ec2.InstanceType
             
@@ -75962,12 +76513,9 @@ class SystemdConfigFileOptions:
             ec2.Instance(self, "Instance",
                 vpc=vpc,
                 instance_type=instance_type,
-                machine_image=ec2.MachineImage.latest_amazon_linux(
-                    # Amazon Linux 2 uses SystemD
-                    generation=ec2.AmazonLinuxGeneration, AMAZON_LINUX_2=AMAZON_LINUX_2
-                ),
+                machine_image=ec2.MachineImage.latest_amazon_linux2022(),
             
-                init=ec2.CloudFormationInit.from_elements([
+                init=ec2.CloudFormationInit.from_elements(
                     # Create a simple config file that runs a Python web server
                     ec2.InitService.systemd_config_file("simpleserver",
                         command="/usr/bin/python3 -m http.server 8080",
@@ -75978,8 +76526,7 @@ class SystemdConfigFileOptions:
                         service_manager=ec2.ServiceManager.SYSTEMD
                     ),
                     # Drop an example file to show the web server working
-                    ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!")
-                ])
+                    ec2.InitFile.from_string("/var/www/html/index.html", "Hello! It's working!"))
             )
         '''
         if __debug__:
@@ -76113,23 +76660,13 @@ class UserData(
 
     Example::
 
-        # cluster: eks.Cluster
+        multipart_user_data = ec2.MultipartUserData()
+        commands_user_data = ec2.UserData.for_linux()
+        multipart_user_data.add_user_data_part(commands_user_data, ec2.MultipartBody.SHELL_SCRIPT, True)
         
-        user_data = ec2.UserData.for_linux()
-        user_data.add_commands("set -o xtrace", f"/etc/eks/bootstrap.sh {cluster.clusterName}")
-        lt = ec2.CfnLaunchTemplate(self, "LaunchTemplate",
-            launch_template_data=ec2.CfnLaunchTemplate.LaunchTemplateDataProperty(
-                image_id="some-ami-id",  # custom AMI
-                instance_type="t3.small",
-                user_data=Fn.base64(user_data.render())
-            )
-        )
-        cluster.add_nodegroup_capacity("extra-ng",
-            launch_template_spec=eks.LaunchTemplateSpec(
-                id=lt.ref,
-                version=lt.attr_latest_version_number
-            )
-        )
+        # Adding commands to the multipartUserData adds them to commandsUserData, and vice-versa.
+        multipart_user_data.add_commands("touch /root/multi.txt")
+        commands_user_data.add_commands("touch /root/userdata.txt")
     '''
 
     def __init__(self) -> None:
@@ -76349,7 +76886,6 @@ class Volume(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # instance: ec2.Instance
         # role: iam.Role
         
@@ -76753,7 +77289,6 @@ class VolumeProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # instance: ec2.Instance
             # role: iam.Role
             
@@ -76992,9 +77527,8 @@ class Vpc(
 
     For example::
 
-       # Example automatically generated from non-compiling source. May contain errors.
        vpc = ec2.Vpc(self, "TheVPC",
-           ip_addresses=IpAddresses.cidr("10.0.0.0/16")
+           ip_addresses=ec2.IpAddresses.cidr("10.0.0.0/16")
        )
 
        # Iterate the private subnets
@@ -77752,7 +78286,6 @@ class VpcAttributes:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             vpc = ec2.Vpc.from_vpc_attributes(self, "VPC",
                 vpc_id="vpc-1234",
                 availability_zones=["us-east-1a", "us-east-1b"],
@@ -78116,7 +78649,6 @@ class VpcEndpointService(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # network_load_balancer1: elbv2.NetworkLoadBalancer
         # network_load_balancer2: elbv2.NetworkLoadBalancer
         
@@ -78225,7 +78757,6 @@ class VpcEndpointServiceProps:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             # network_load_balancer1: elbv2.NetworkLoadBalancer
             # network_load_balancer2: elbv2.NetworkLoadBalancer
             
@@ -78946,7 +79477,6 @@ class VpcProps:
         For example, if you want 1 public subnet, 1 private subnet, and 1 isolated
         subnet in each AZ provide the following::
 
-           # Example automatically generated from non-compiling source. May contain errors.
            ec2.Vpc(self, "VPC",
                subnet_configuration=[ec2.SubnetConfiguration(
                    cidr_mask=24,
@@ -79419,7 +79949,6 @@ class VpnConnectionOptions:
 
         Example::
 
-            # Example automatically generated from non-compiling source. May contain errors.
             vpc = ec2.Vpc(self, "MyVpc",
                 vpn_connections={
                     "dynamic": ec2.VpnConnectionOptions( # Dynamic routing (BGP)
@@ -79939,17 +80468,11 @@ class WindowsUserDataOptions:
 
         :param persist: Set to true to set this userdata to persist through an instance reboot; allowing it to run on every instance start. By default, UserData is run only once during the first instance launch. For more information, see: https://aws.amazon.com/premiumsupport/knowledge-center/execute-user-data-ec2/ https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/ec2-windows-user-data.html#user-data-scripts Default: false
 
-        :exampleMetadata: fixture=_generated
+        :exampleMetadata: infused
 
         Example::
 
-            # The code below shows an example of how to instantiate this type.
-            # The values are placeholders you should change.
-            from aws_cdk import aws_ec2 as ec2
-            
-            windows_user_data_options = ec2.WindowsUserDataOptions(
-                persist=False
-            )
+            windows_user_data = ec2.UserData.for_windows(persist=True)
         '''
         if __debug__:
             type_hints = typing.get_type_hints(_typecheckingstub__a9243d0fea7f4d4e8b65c37925a1dbb71b6136866e6c28c37f9d5dc79df4716d)
@@ -80281,6 +80804,518 @@ class WindowsVersion(enum.Enum):
     WINDOWS_SERVER_2022_SWEDISH_FULL_BASE = "WINDOWS_SERVER_2022_SWEDISH_FULL_BASE"
 
 
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2022ImageSsmParameterProps",
+    jsii_struct_bases=[AmazonLinuxImageSsmParameterCommonOptions],
+    name_mapping={
+        "cached_in_context": "cachedInContext",
+        "user_data": "userData",
+        "cpu_type": "cpuType",
+        "edition": "edition",
+        "kernel": "kernel",
+    },
+)
+class AmazonLinux2022ImageSsmParameterProps(AmazonLinuxImageSsmParameterCommonOptions):
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        kernel: typing.Optional[AmazonLinux2022Kernel] = None,
+    ) -> None:
+        '''Properties specific to al2022 images.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2022Kernel.DEFAULT
+
+        :exampleMetadata: infused
+
+        Example::
+
+            # Example automatically generated from non-compiling source. May contain errors.
+            # vpc: ec2.Vpc
+            # instance_type: ec2.InstanceType
+            
+            
+            # Amazon Linux 2
+            ec2.Instance(self, "Instance2",
+                vpc=vpc,
+                instance_type=instance_type,
+                machine_image=ec2.MachineImage.latest_amazon_linux2()
+            )
+            
+            # Amazon Linux 2 with kernel 5.x
+            ec2.Instance(self, "Instance3",
+                vpc=vpc,
+                instance_type=instance_type,
+                machine_image=ec2.AmazonLinux2Image(
+                    kernel=ec2.AmazonLinux2Kernel.KERNEL_5_10
+                )
+            )
+            
+            # AWS Linux 2022
+            ec2.Instance(self, "Instance4",
+                vpc=vpc,
+                instance_type=instance_type,
+                machine_image=ec2.MachineImage.latest_amazon_linux2022()
+            )
+            
+            # Graviton 3 Processor
+            ec2.Instance(self, "Instance5",
+                vpc=vpc,
+                instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+                machine_image=ec2.MachineImage.latest_amazon_linux2022(
+                    cpu_type=ec2.AmazonLinuxCpuType.ARM_64
+                )
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__968329b6e3d88dbd1836e6234bc305a96628c570666cc423d4eeccc95dc92ab6)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+            check_type(argname="argument cpu_type", value=cpu_type, expected_type=type_hints["cpu_type"])
+            check_type(argname="argument edition", value=edition, expected_type=type_hints["edition"])
+            check_type(argname="argument kernel", value=kernel, expected_type=type_hints["kernel"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {}
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+        if cpu_type is not None:
+            self._values["cpu_type"] = cpu_type
+        if edition is not None:
+            self._values["edition"] = edition
+        if kernel is not None:
+            self._values["kernel"] = kernel
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional[UserData]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional[UserData], result)
+
+    @builtins.property
+    def cpu_type(self) -> typing.Optional[AmazonLinuxCpuType]:
+        '''CPU Type.
+
+        :default: AmazonLinuxCpuType.X86_64
+        '''
+        result = self._values.get("cpu_type")
+        return typing.cast(typing.Optional[AmazonLinuxCpuType], result)
+
+    @builtins.property
+    def edition(self) -> typing.Optional[AmazonLinuxEdition]:
+        '''What edition of Amazon Linux to use.
+
+        :default: AmazonLinuxEdition.Standard
+        '''
+        result = self._values.get("edition")
+        return typing.cast(typing.Optional[AmazonLinuxEdition], result)
+
+    @builtins.property
+    def kernel(self) -> typing.Optional[AmazonLinux2022Kernel]:
+        '''What kernel version of Amazon Linux to use.
+
+        :default: AmazonLinux2022Kernel.DEFAULT
+        '''
+        result = self._values.get("kernel")
+        return typing.cast(typing.Optional[AmazonLinux2022Kernel], result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinux2022ImageSsmParameterProps(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2023ImageSsmParameterProps",
+    jsii_struct_bases=[AmazonLinuxImageSsmParameterCommonOptions],
+    name_mapping={
+        "cached_in_context": "cachedInContext",
+        "user_data": "userData",
+        "cpu_type": "cpuType",
+        "edition": "edition",
+        "kernel": "kernel",
+    },
+)
+class AmazonLinux2023ImageSsmParameterProps(AmazonLinuxImageSsmParameterCommonOptions):
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        kernel: typing.Optional[AmazonLinux2023Kernel] = None,
+    ) -> None:
+        '''Properties specific to al2023 images.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2023Kernel.DEFAULT
+
+        :exampleMetadata: infused
+
+        Example::
+
+            # Example automatically generated from non-compiling source. May contain errors.
+            ec2.Instance(self, "LatestAl2023",
+                instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+                machine_image=ec2.MachineImage.latest_amazon_linux2023(
+                    cached_in_context=True
+                )
+            )
+            
+            # or
+            ec2.Instance(self, "LatestAl2023",
+                instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+                # context cache is turned on by default
+                machine_image=ec2.AmazonLinux2023ImageSsmParameter()
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__d2a291560388da3a1deca6cc63773b445813e32521bbcf4ece1d3a557e2eda6b)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+            check_type(argname="argument cpu_type", value=cpu_type, expected_type=type_hints["cpu_type"])
+            check_type(argname="argument edition", value=edition, expected_type=type_hints["edition"])
+            check_type(argname="argument kernel", value=kernel, expected_type=type_hints["kernel"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {}
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+        if cpu_type is not None:
+            self._values["cpu_type"] = cpu_type
+        if edition is not None:
+            self._values["edition"] = edition
+        if kernel is not None:
+            self._values["kernel"] = kernel
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional[UserData]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional[UserData], result)
+
+    @builtins.property
+    def cpu_type(self) -> typing.Optional[AmazonLinuxCpuType]:
+        '''CPU Type.
+
+        :default: AmazonLinuxCpuType.X86_64
+        '''
+        result = self._values.get("cpu_type")
+        return typing.cast(typing.Optional[AmazonLinuxCpuType], result)
+
+    @builtins.property
+    def edition(self) -> typing.Optional[AmazonLinuxEdition]:
+        '''What edition of Amazon Linux to use.
+
+        :default: AmazonLinuxEdition.Standard
+        '''
+        result = self._values.get("edition")
+        return typing.cast(typing.Optional[AmazonLinuxEdition], result)
+
+    @builtins.property
+    def kernel(self) -> typing.Optional[AmazonLinux2023Kernel]:
+        '''What kernel version of Amazon Linux to use.
+
+        :default: AmazonLinux2023Kernel.DEFAULT
+        '''
+        result = self._values.get("kernel")
+        return typing.cast(typing.Optional[AmazonLinux2023Kernel], result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinux2023ImageSsmParameterProps(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.data_type(
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2ImageSsmParameterProps",
+    jsii_struct_bases=[AmazonLinuxImageSsmParameterCommonOptions],
+    name_mapping={
+        "cached_in_context": "cachedInContext",
+        "user_data": "userData",
+        "cpu_type": "cpuType",
+        "edition": "edition",
+        "kernel": "kernel",
+        "storage": "storage",
+        "virtualization": "virtualization",
+    },
+)
+class AmazonLinux2ImageSsmParameterProps(AmazonLinuxImageSsmParameterCommonOptions):
+    def __init__(
+        self,
+        *,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        kernel: typing.Optional[AmazonLinux2Kernel] = None,
+        storage: typing.Optional[AmazonLinuxStorage] = None,
+        virtualization: typing.Optional[AmazonLinuxVirt] = None,
+    ) -> None:
+        '''Properties specific to amzn2 images.
+
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param kernel: What kernel version of Amazon Linux to use. Default: -
+        :param storage: What storage backed image to use. Default: GeneralPurpose
+        :param virtualization: Virtualization type. Default: HVM
+
+        :exampleMetadata: fixture=_generated
+
+        Example::
+
+            # The code below shows an example of how to instantiate this type.
+            # The values are placeholders you should change.
+            from aws_cdk import aws_ec2 as ec2
+            
+            # amazon_linux2_kernel: ec2.AmazonLinux2Kernel
+            # user_data: ec2.UserData
+            
+            amazon_linux2_image_ssm_parameter_props = ec2.AmazonLinux2ImageSsmParameterProps(
+                cached_in_context=False,
+                cpu_type=ec2.AmazonLinuxCpuType.ARM_64,
+                edition=ec2.AmazonLinuxEdition.STANDARD,
+                kernel=amazon_linux2_kernel,
+                storage=ec2.AmazonLinuxStorage.EBS,
+                user_data=user_data,
+                virtualization=ec2.AmazonLinuxVirt.HVM
+            )
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__8aa3dd8e9489482da5f68eebe827af2a2367490c7299028616bae30c26efbd55)
+            check_type(argname="argument cached_in_context", value=cached_in_context, expected_type=type_hints["cached_in_context"])
+            check_type(argname="argument user_data", value=user_data, expected_type=type_hints["user_data"])
+            check_type(argname="argument cpu_type", value=cpu_type, expected_type=type_hints["cpu_type"])
+            check_type(argname="argument edition", value=edition, expected_type=type_hints["edition"])
+            check_type(argname="argument kernel", value=kernel, expected_type=type_hints["kernel"])
+            check_type(argname="argument storage", value=storage, expected_type=type_hints["storage"])
+            check_type(argname="argument virtualization", value=virtualization, expected_type=type_hints["virtualization"])
+        self._values: typing.Dict[builtins.str, typing.Any] = {}
+        if cached_in_context is not None:
+            self._values["cached_in_context"] = cached_in_context
+        if user_data is not None:
+            self._values["user_data"] = user_data
+        if cpu_type is not None:
+            self._values["cpu_type"] = cpu_type
+        if edition is not None:
+            self._values["edition"] = edition
+        if kernel is not None:
+            self._values["kernel"] = kernel
+        if storage is not None:
+            self._values["storage"] = storage
+        if virtualization is not None:
+            self._values["virtualization"] = virtualization
+
+    @builtins.property
+    def cached_in_context(self) -> typing.Optional[builtins.bool]:
+        '''Whether the AMI ID is cached to be stable between deployments.
+
+        By default, the newest image is used on each deployment. This will cause
+        instances to be replaced whenever a new version is released, and may cause
+        downtime if there aren't enough running instances in the AutoScalingGroup
+        to reschedule the tasks on.
+
+        If set to true, the AMI ID will be cached in ``cdk.context.json`` and the
+        same value will be used on future runs. Your instances will not be replaced
+        but your AMI version will grow old over time. To refresh the AMI lookup,
+        you will have to evict the value from the cache using the ``cdk context``
+        command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for
+        more information.
+
+        Can not be set to ``true`` in environment-agnostic stacks.
+
+        :default: false
+        '''
+        result = self._values.get("cached_in_context")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
+    @builtins.property
+    def user_data(self) -> typing.Optional[UserData]:
+        '''Initial user data.
+
+        :default: - Empty UserData for Linux machines
+        '''
+        result = self._values.get("user_data")
+        return typing.cast(typing.Optional[UserData], result)
+
+    @builtins.property
+    def cpu_type(self) -> typing.Optional[AmazonLinuxCpuType]:
+        '''CPU Type.
+
+        :default: AmazonLinuxCpuType.X86_64
+        '''
+        result = self._values.get("cpu_type")
+        return typing.cast(typing.Optional[AmazonLinuxCpuType], result)
+
+    @builtins.property
+    def edition(self) -> typing.Optional[AmazonLinuxEdition]:
+        '''What edition of Amazon Linux to use.
+
+        :default: AmazonLinuxEdition.Standard
+        '''
+        result = self._values.get("edition")
+        return typing.cast(typing.Optional[AmazonLinuxEdition], result)
+
+    @builtins.property
+    def kernel(self) -> typing.Optional[AmazonLinux2Kernel]:
+        '''What kernel version of Amazon Linux to use.
+
+        :default: -
+        '''
+        result = self._values.get("kernel")
+        return typing.cast(typing.Optional[AmazonLinux2Kernel], result)
+
+    @builtins.property
+    def storage(self) -> typing.Optional[AmazonLinuxStorage]:
+        '''What storage backed image to use.
+
+        :default: GeneralPurpose
+        '''
+        result = self._values.get("storage")
+        return typing.cast(typing.Optional[AmazonLinuxStorage], result)
+
+    @builtins.property
+    def virtualization(self) -> typing.Optional[AmazonLinuxVirt]:
+        '''Virtualization type.
+
+        :default: HVM
+        '''
+        result = self._values.get("virtualization")
+        return typing.cast(typing.Optional[AmazonLinuxVirt], result)
+
+    def __eq__(self, rhs: typing.Any) -> builtins.bool:
+        return isinstance(rhs, self.__class__) and rhs._values == self._values
+
+    def __ne__(self, rhs: typing.Any) -> builtins.bool:
+        return not (rhs == self)
+
+    def __repr__(self) -> str:
+        return "AmazonLinux2ImageSsmParameterProps(%s)" % ", ".join(
+            k + "=" + repr(v) for k, v in self._values.items()
+        )
+
+
+@jsii.implements(IMachineImage)
+class AmazonLinuxImageSsmParameterBase(
+    metaclass=jsii.JSIIAbstractClass,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinuxImageSsmParameterBase",
+):
+    def __init__(
+        self,
+        *,
+        parameter_name: builtins.str,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> None:
+        '''
+        :param parameter_name: The name of the SSM parameter that contains the AMI value.
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinuxImageSsmParameterBaseProps(
+            parameter_name=parameter_name,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        jsii.create(self.__class__, self, [props])
+
+    @jsii.member(jsii_name="getImage")
+    def get_image(self, scope: _constructs_77d1e7e8.Construct) -> MachineImageConfig:
+        '''Return the image to use in the given context.
+
+        :param scope: -
+        '''
+        if __debug__:
+            type_hints = typing.get_type_hints(_typecheckingstub__cf74508a9d2ec0bb2e7646472ba3fe700482482a3d87536fb58694a37fa01191)
+            check_type(argname="argument scope", value=scope, expected_type=type_hints["scope"])
+        return typing.cast(MachineImageConfig, jsii.invoke(self, "getImage", [scope]))
+
+
+class _AmazonLinuxImageSsmParameterBaseProxy(AmazonLinuxImageSsmParameterBase):
+    pass
+
+# Adding a "__jsii_proxy_class__(): typing.Type" function to the abstract class
+typing.cast(typing.Any, AmazonLinuxImageSsmParameterBase).__jsii_proxy_class__ = lambda : _AmazonLinuxImageSsmParameterBaseProxy
+
+
 @jsii.implements(IInstance)
 class BastionHostLinux(
     _Resource_45bc6135,
@@ -81233,7 +82268,6 @@ class FlowLog(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
@@ -81714,7 +82748,6 @@ class InitCommand(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         handle = ec2.InitServiceRestartHandle()
         ec2.CloudFormationInit.from_elements(
             ec2.InitCommand.shell_command("/usr/bin/custom-nginx-install.sh", service_restart_handles=[handle]),
@@ -82371,7 +83404,6 @@ class InterfaceVpcEndpoint(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         # vpc: ec2.Vpc
         
         
@@ -82522,7 +83554,6 @@ class MultipartUserData(
 
     Example::
 
-        # Example automatically generated from non-compiling source. May contain errors.
         boot_hook_conf = ec2.UserData.for_linux()
         boot_hook_conf.add_commands("cloud-init-per once docker_options echo 'OPTIONS=\"${OPTIONS} --storage-opt dm.basesize=40G\"' >> /etc/sysconfig/docker")
         
@@ -82650,7 +83681,6 @@ class MultipartUserData(
 
         If ``makeDefault`` is false, then this is the same as calling::
 
-           # Example automatically generated from non-compiling source. May contain errors.
            # multi_part: ec2.MultipartUserData
            # user_data: ec2.UserData
            # content_type: str
@@ -83726,6 +84756,302 @@ class WindowsImage(
         jsii.create(self.__class__, self, [version, props])
 
 
+class AmazonLinux2022ImageSsmParameter(
+    AmazonLinuxImageSsmParameterBase,
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2022ImageSsmParameter",
+):
+    '''A SSM Parameter that contains the AMI ID for Amazon Linux 2023.
+
+    :exampleMetadata: fixture=_generated
+
+    Example::
+
+        # The code below shows an example of how to instantiate this type.
+        # The values are placeholders you should change.
+        from aws_cdk import aws_ec2 as ec2
+        
+        # amazon_linux2022_kernel: ec2.AmazonLinux2022Kernel
+        # user_data: ec2.UserData
+        
+        amazon_linux2022_image_ssm_parameter = ec2.AmazonLinux2022ImageSsmParameter(
+            cached_in_context=False,
+            cpu_type=ec2.AmazonLinuxCpuType.ARM_64,
+            edition=ec2.AmazonLinuxEdition.STANDARD,
+            kernel=amazon_linux2022_kernel,
+            user_data=user_data
+        )
+    '''
+
+    def __init__(
+        self,
+        *,
+        kernel: typing.Optional[AmazonLinux2022Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> None:
+        '''
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2022Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2022ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        jsii.create(self.__class__, self, [props])
+
+    @jsii.member(jsii_name="ssmParameterName")
+    @builtins.classmethod
+    def ssm_parameter_name(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2022Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> builtins.str:
+        '''Generates a SSM Parameter name for a specific amazon linux 2022 AMI.
+
+        Example values::
+
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-kernel-5.15-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-kernel-default-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-minimal-kernel-5.15-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-minimal-kernel-5.15-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-kernel-5.15-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-minimal-kernel-default-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-minimal-kernel-default-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2022-ami-kernel-default-arm64",
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2022Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2022ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(builtins.str, jsii.sinvoke(cls, "ssmParameterName", [props]))
+
+
+class AmazonLinux2023ImageSsmParameter(
+    AmazonLinuxImageSsmParameterBase,
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2023ImageSsmParameter",
+):
+    '''A SSM Parameter that contains the AMI ID for Amazon Linux 2023.
+
+    :exampleMetadata: infused
+
+    Example::
+
+        # Example automatically generated from non-compiling source. May contain errors.
+        ec2.Instance(self, "LatestAl2023",
+            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+            machine_image=ec2.MachineImage.latest_amazon_linux2023(
+                cached_in_context=True
+            )
+        )
+        
+        # or
+        ec2.Instance(self, "LatestAl2023",
+            instance_type=ec2.InstanceType.of(ec2.InstanceClass.C7G, ec2.InstanceSize.LARGE),
+            # context cache is turned on by default
+            machine_image=ec2.AmazonLinux2023ImageSsmParameter()
+        )
+    '''
+
+    def __init__(
+        self,
+        *,
+        kernel: typing.Optional[AmazonLinux2023Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> None:
+        '''
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2023Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2023ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        jsii.create(self.__class__, self, [props])
+
+    @jsii.member(jsii_name="ssmParameterName")
+    @builtins.classmethod
+    def ssm_parameter_name(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2023Kernel] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> builtins.str:
+        '''Generates a SSM Parameter name for a specific amazon linux 2022 AMI.
+
+        Example values::
+
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-kernel-6.1-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-kernel-6.1-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-minimal-kernel-6.1-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-minimal-kernel-6.1-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-minimal-kernel-default-arm64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-kernel-default-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-minimal-kernel-default-x86_64",
+           "/aws/service/ami-amazon-linux-latest/al2023-ami-kernel-default-arm64",
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: AmazonLinux2023Kernel.DEFAULT
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2023ImageSsmParameterProps(
+            kernel=kernel,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(builtins.str, jsii.sinvoke(cls, "ssmParameterName", [props]))
+
+
+class AmazonLinux2ImageSsmParameter(
+    AmazonLinuxImageSsmParameterBase,
+    metaclass=jsii.JSIIMeta,
+    jsii_type="aws-cdk-lib.aws_ec2.AmazonLinux2ImageSsmParameter",
+):
+    '''A SSM Parameter that contains the AMI ID for Amazon Linux 2.
+
+    :exampleMetadata: fixture=_generated
+
+    Example::
+
+        # The code below shows an example of how to instantiate this type.
+        # The values are placeholders you should change.
+        from aws_cdk import aws_ec2 as ec2
+        
+        # amazon_linux2_kernel: ec2.AmazonLinux2Kernel
+        # user_data: ec2.UserData
+        
+        amazon_linux2_image_ssm_parameter = ec2.AmazonLinux2ImageSsmParameter(
+            cached_in_context=False,
+            cpu_type=ec2.AmazonLinuxCpuType.ARM_64,
+            edition=ec2.AmazonLinuxEdition.STANDARD,
+            kernel=amazon_linux2_kernel,
+            storage=ec2.AmazonLinuxStorage.EBS,
+            user_data=user_data,
+            virtualization=ec2.AmazonLinuxVirt.HVM
+        )
+    '''
+
+    def __init__(
+        self,
+        *,
+        kernel: typing.Optional[AmazonLinux2Kernel] = None,
+        storage: typing.Optional[AmazonLinuxStorage] = None,
+        virtualization: typing.Optional[AmazonLinuxVirt] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> None:
+        '''
+        :param kernel: What kernel version of Amazon Linux to use. Default: -
+        :param storage: What storage backed image to use. Default: GeneralPurpose
+        :param virtualization: Virtualization type. Default: HVM
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2ImageSsmParameterProps(
+            kernel=kernel,
+            storage=storage,
+            virtualization=virtualization,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        jsii.create(self.__class__, self, [props])
+
+    @jsii.member(jsii_name="ssmParameterName")
+    @builtins.classmethod
+    def ssm_parameter_name(
+        cls,
+        *,
+        kernel: typing.Optional[AmazonLinux2Kernel] = None,
+        storage: typing.Optional[AmazonLinuxStorage] = None,
+        virtualization: typing.Optional[AmazonLinuxVirt] = None,
+        cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+        edition: typing.Optional[AmazonLinuxEdition] = None,
+        cached_in_context: typing.Optional[builtins.bool] = None,
+        user_data: typing.Optional[UserData] = None,
+    ) -> builtins.str:
+        '''Generates a SSM Parameter name for a specific amazon linux 2 AMI.
+
+        Example values::
+
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-ebs",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-gp2",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.10-hvm-x86_64-ebs",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-arm64-gp2",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-minimal-hvm-arm64-ebs",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.10-hvm-arm64-gp2",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.10-hvm-x86_64-gp2",
+           "/aws/service/ami-amazon-linux-latest/amzn2-ami-minimal-hvm-x86_64-ebs"
+
+        :param kernel: What kernel version of Amazon Linux to use. Default: -
+        :param storage: What storage backed image to use. Default: GeneralPurpose
+        :param virtualization: Virtualization type. Default: HVM
+        :param cpu_type: CPU Type. Default: AmazonLinuxCpuType.X86_64
+        :param edition: What edition of Amazon Linux to use. Default: AmazonLinuxEdition.Standard
+        :param cached_in_context: Whether the AMI ID is cached to be stable between deployments. By default, the newest image is used on each deployment. This will cause instances to be replaced whenever a new version is released, and may cause downtime if there aren't enough running instances in the AutoScalingGroup to reschedule the tasks on. If set to true, the AMI ID will be cached in ``cdk.context.json`` and the same value will be used on future runs. Your instances will not be replaced but your AMI version will grow old over time. To refresh the AMI lookup, you will have to evict the value from the cache using the ``cdk context`` command. See https://docs.aws.amazon.com/cdk/latest/guide/context.html for more information. Can not be set to ``true`` in environment-agnostic stacks. Default: false
+        :param user_data: Initial user data. Default: - Empty UserData for Linux machines
+        '''
+        props = AmazonLinux2ImageSsmParameterProps(
+            kernel=kernel,
+            storage=storage,
+            virtualization=virtualization,
+            cpu_type=cpu_type,
+            edition=edition,
+            cached_in_context=cached_in_context,
+            user_data=user_data,
+        )
+
+        return typing.cast(builtins.str, jsii.sinvoke(cls, "ssmParameterName", [props]))
+
+
 class AmazonLinuxImage(
     GenericSSMParameterImage,
     metaclass=jsii.JSIIMeta,
@@ -84183,11 +85509,24 @@ __all__ = [
     "AddRouteOptions",
     "AllocateCidrRequest",
     "AllocatedSubnet",
+    "AmazonLinux2022ImageSsmParameter",
+    "AmazonLinux2022ImageSsmParameterProps",
+    "AmazonLinux2022Kernel",
+    "AmazonLinux2023ImageSsmParameter",
+    "AmazonLinux2023ImageSsmParameterProps",
+    "AmazonLinux2023Kernel",
+    "AmazonLinux2ImageSsmParameter",
+    "AmazonLinux2ImageSsmParameterProps",
+    "AmazonLinux2Kernel",
     "AmazonLinuxCpuType",
     "AmazonLinuxEdition",
     "AmazonLinuxGeneration",
     "AmazonLinuxImage",
     "AmazonLinuxImageProps",
+    "AmazonLinuxImageSsmParameterBase",
+    "AmazonLinuxImageSsmParameterBaseOptions",
+    "AmazonLinuxImageSsmParameterBaseProps",
+    "AmazonLinuxImageSsmParameterCommonOptions",
     "AmazonLinuxKernel",
     "AmazonLinuxStorage",
     "AmazonLinuxVirt",
@@ -84684,6 +86023,24 @@ def _typecheckingstub__cca8efe6fa73141fbec2a2cf91f8f6bf2e0f69d49252bd2d45b21fcb2
     """Type checking stubs"""
     pass
 
+def _typecheckingstub__67731f51c6dad8d404e1a6ed177e5a2605da4ce360058d786cf253f72d1aee3d(
+    version: builtins.str,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__0ab727190b8ad0e28c2d1ddc702af61630c845ff5aedd9578b75429a06aba8f5(
+    version: builtins.str,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__3d9d80aebc17990a8f3419f9444ec1fdd3e5bc1c150c3db0d42eda409806c7a8(
+    version: builtins.str,
+) -> None:
+    """Type checking stubs"""
+    pass
+
 def _typecheckingstub__dd95a518c06563a07debc9bf1ca51713b747cf64bded6f7cc81a28680d7ea9fc(
     *,
     cached_in_context: typing.Optional[builtins.bool] = None,
@@ -84698,6 +86055,33 @@ def _typecheckingstub__dd95a518c06563a07debc9bf1ca51713b747cf64bded6f7cc81a28680
     """Type checking stubs"""
     pass
 
+def _typecheckingstub__08eb71b09afb1d361b3f043a5c2d7d4be91f84b114302afefc8a69963ee6333f(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__78a32cfc14171e780d6e44d3e6a99faa6da50655ac09560f7b229b0c0c7383f1(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+    parameter_name: builtins.str,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__8fcdd01a6ab45c77447fba339b5a9358c3ab40c4833c1f86c68009a6a3bb1422(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+    cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+    edition: typing.Optional[AmazonLinuxEdition] = None,
+) -> None:
+    """Type checking stubs"""
+    pass
+
 def _typecheckingstub__e7f632381407c0e83d84ca5b16928a38d4d8f6de29513094b92a876e870ddb63(
     *,
     config_sets: typing.Optional[typing.Sequence[builtins.str]] = None,
@@ -94637,6 +96021,47 @@ def _typecheckingstub__a9243d0fea7f4d4e8b65c37925a1dbb71b6136866e6c28c37f9d5dc79
     """Type checking stubs"""
     pass
 
+def _typecheckingstub__968329b6e3d88dbd1836e6234bc305a96628c570666cc423d4eeccc95dc92ab6(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+    cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+    edition: typing.Optional[AmazonLinuxEdition] = None,
+    kernel: typing.Optional[AmazonLinux2022Kernel] = None,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__d2a291560388da3a1deca6cc63773b445813e32521bbcf4ece1d3a557e2eda6b(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+    cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+    edition: typing.Optional[AmazonLinuxEdition] = None,
+    kernel: typing.Optional[AmazonLinux2023Kernel] = None,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__8aa3dd8e9489482da5f68eebe827af2a2367490c7299028616bae30c26efbd55(
+    *,
+    cached_in_context: typing.Optional[builtins.bool] = None,
+    user_data: typing.Optional[UserData] = None,
+    cpu_type: typing.Optional[AmazonLinuxCpuType] = None,
+    edition: typing.Optional[AmazonLinuxEdition] = None,
+    kernel: typing.Optional[AmazonLinux2Kernel] = None,
+    storage: typing.Optional[AmazonLinuxStorage] = None,
+    virtualization: typing.Optional[AmazonLinuxVirt] = None,
+) -> None:
+    """Type checking stubs"""
+    pass
+
+def _typecheckingstub__cf74508a9d2ec0bb2e7646472ba3fe700482482a3d87536fb58694a37fa01191(
+    scope: _constructs_77d1e7e8.Construct,
+) -> None:
+    """Type checking stubs"""
+    pass
+
 def _typecheckingstub__92a5b88f3339020054ea1e16e9617c17798da0b874294e4200a9b8e5bf598a4b(
     scope: _constructs_77d1e7e8.Construct,
     id: builtins.str,